vidar | 279d764b1e11375d8daa7aadcc8d91c6a2cac0672343296f4b4b08eb84e833d3 | Triage

Submit
Reports

Overview

overview

Static

static

3

0baac56e1b...a9.exe

windows7-x64

0baac56e1b...a9.exe

windows10-2004-x64

Sharing

General

Target

0baac56e1be81d6514326686c9e311a9
Size

671KB
Sample

231230-cyf4vaeha7
MD5

0baac56e1be81d6514326686c9e311a9
SHA1

cb24b50c47c9a9e088573b22c1f6db4e36a8e9e9
SHA256

279d764b1e11375d8daa7aadcc8d91c6a2cac0672343296f4b4b08eb84e833d3
SHA512

1bd39b93c174dbb1087869d75cfb3dd5fb5518aea4fe89cc241055fd9bcc108039793b300951bda2d4ea582ea08995e41c6b3685b47d9e94aff4cbc2ca73b2a4
SSDEEP

12288:WZIsaMbBIqs21uZuoL70e7oHXnWYGwYB4PsFw8nmJOjYEdRe6WSbOfIT:kIuq2Md702cXnWJfB4kQYQI6

Score

10^/10

vidar 399 stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0baac56e1be81d6514326686c9e311a9.exe

Resource

win7-20231215-en

vidar 399 stealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

0baac56e1be81d6514326686c9e311a9.exe

Resource

win10v2004-20231215-en

vidar 399 stealer

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

39.8

Botnet

399

C2

https://xeronxikxxx.tumblr.com/

Attributes

profile_id
399

Targets

- Target
  
  0baac56e1be81d6514326686c9e311a9
- Size
  
  671KB
- MD5
  
  0baac56e1be81d6514326686c9e311a9
- SHA1
  
  cb24b50c47c9a9e088573b22c1f6db4e36a8e9e9
- SHA256
  
  279d764b1e11375d8daa7aadcc8d91c6a2cac0672343296f4b4b08eb84e833d3
- SHA512
  
  1bd39b93c174dbb1087869d75cfb3dd5fb5518aea4fe89cc241055fd9bcc108039793b300951bda2d4ea582ea08995e41c6b3685b47d9e94aff4cbc2ca73b2a4
- SSDEEP
  
  12288:WZIsaMbBIqs21uZuoL70e7oHXnWYGwYB4PsFw8nmJOjYEdRe6WSbOfIT:kIuq2Md702cXnWJfB4kQYQI6
Score

10^/10

vidar 399 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

vidar399stealer

behavioral2

vidar399stealer

© 2018-2024

Terms | Privacy