vidar | 0ab5a40868d22b18ebfa257e44ab4b9f988db231b037cddee4b5931dbad61cc4 | Triage

Submit
Reports

Overview

overview

Static

static

3

e9a9ec4f03...bc.exe

windows7-x64

e9a9ec4f03...bc.exe

windows10-2004-x64

Sharing

General

Target

e9a9ec4f0312e89c6112ebd41c958ebc
Size

642KB
Sample

231222-tlxz9seagj
MD5

e9a9ec4f0312e89c6112ebd41c958ebc
SHA1

9cf3ebbe82236d86a1d9a9a77ef17fe33b257a1d
SHA256

0ab5a40868d22b18ebfa257e44ab4b9f988db231b037cddee4b5931dbad61cc4
SHA512

3e7f9be9d92609d2bf8d448cc2a9f0e32e627d02ca1c2f4ec940301f51cf3ced665a76f73cb3a4d5bcfe02437a9e99ace0779c51c8738e1782df4df448543523
SSDEEP

12288:emjdtLlqd0+7EJ8xVjbEADGimbgv+YpZhc3+OjabqNRKMsRpC7THll:HzRCW8xdJlmb6+Y3hcuOjbi7Rp2J

Score

10^/10

vidar 1008 stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e9a9ec4f0312e89c6112ebd41c958ebc.exe

Resource

win7-20231215-en

vidar 1008 stealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

e9a9ec4f0312e89c6112ebd41c958ebc.exe

Resource

win10v2004-20231215-en

vidar 1008 stealer

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

40.4

Botnet

1008

C2

https://romkaxarit.tumblr.com/

Attributes

profile_id
1008

Targets

- Target
  
  e9a9ec4f0312e89c6112ebd41c958ebc
- Size
  
  642KB
- MD5
  
  e9a9ec4f0312e89c6112ebd41c958ebc
- SHA1
  
  9cf3ebbe82236d86a1d9a9a77ef17fe33b257a1d
- SHA256
  
  0ab5a40868d22b18ebfa257e44ab4b9f988db231b037cddee4b5931dbad61cc4
- SHA512
  
  3e7f9be9d92609d2bf8d448cc2a9f0e32e627d02ca1c2f4ec940301f51cf3ced665a76f73cb3a4d5bcfe02437a9e99ace0779c51c8738e1782df4df448543523
- SSDEEP
  
  12288:emjdtLlqd0+7EJ8xVjbEADGimbgv+YpZhc3+OjabqNRKMsRpC7THll:HzRCW8xdJlmb6+Y3hcuOjbi7Rp2J
Score

10^/10

vidar 1008 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

vidar1008stealer

behavioral2

vidar1008stealer

© 2018-2025

Terms | Privacy