vidar | 3dca1ff9ed12b5e4366da8908486d194850d2e7f8d705b323109b62735483813 | Triage

Submit
Reports

Overview

overview

Static

static

3

b63d8d8ffc...cd.exe

windows7-x64

b63d8d8ffc...cd.exe

windows10-2004-x64

Sharing

General

Target

b63d8d8ffc60286cf5648012c80eb7cd
Size

748KB
Sample

231222-rdw2wseham
MD5

b63d8d8ffc60286cf5648012c80eb7cd
SHA1

73962357655120731366ad232fc75c69e4c73df7
SHA256

3dca1ff9ed12b5e4366da8908486d194850d2e7f8d705b323109b62735483813
SHA512

4676eb94f72dc3fb969737646853aa12806253a1bcb5ea4402a54d639626675c33f26bdea5f981e960ff5b02d6365393ab51219f827eb8d29cd4862f0cc1d11b
SSDEEP

12288:0LX5MQHwSEvTUudWReEJ+TYJe/7dAM/CxgdU2TvLq5hRL4ziTSaX59YF:pQHwZTUud0gXdAM6q2szq/x+1F

Score

10^/10

vidar 937 stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

b63d8d8ffc60286cf5648012c80eb7cd.exe

Resource

win7-20231215-en

vidar 937 stealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

b63d8d8ffc60286cf5648012c80eb7cd.exe

Resource

win10v2004-20231215-en

vidar 937 stealer

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

40.3

Botnet

937

C2

https://lenko349.tumblr.com/

Attributes

profile_id
937

Targets

- Target
  
  b63d8d8ffc60286cf5648012c80eb7cd
- Size
  
  748KB
- MD5
  
  b63d8d8ffc60286cf5648012c80eb7cd
- SHA1
  
  73962357655120731366ad232fc75c69e4c73df7
- SHA256
  
  3dca1ff9ed12b5e4366da8908486d194850d2e7f8d705b323109b62735483813
- SHA512
  
  4676eb94f72dc3fb969737646853aa12806253a1bcb5ea4402a54d639626675c33f26bdea5f981e960ff5b02d6365393ab51219f827eb8d29cd4862f0cc1d11b
- SSDEEP
  
  12288:0LX5MQHwSEvTUudWReEJ+TYJe/7dAM/CxgdU2TvLq5hRL4ziTSaX59YF:pQHwZTUud0gXdAM6q2szq/x+1F
Score

10^/10

vidar 937 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

vidar937stealer

behavioral2

vidar937stealer

© 2018-2024

Terms | Privacy