Overview

overview

10

Static

static

3

2de5bcc92a...c0.exe

windows7-x64

10

2de5bcc92a...c0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2de5bcc92a19c3f567cd2ce58a6ba3c0

  • Size

    543KB

  • Sample

    231231-jltbzadag4

  • MD5

    2de5bcc92a19c3f567cd2ce58a6ba3c0

  • SHA1

    32190e5525e69ddb0d2aab9878eeab7d95f85f47

  • SHA256

    2cb1c1ad78901979b10afd1d286242c79d4ac5d83a081ac8608b83c035766d12

  • SHA512

    0acfec9c5d846904ab2738390b2362ce94342d32859c5c972b8fea948a62b9c1bcb74153eb7a2f56f349d49ae5d6690572a4c8300f2c2efb80b786c3ac2407fe

  • SSDEEP

    12288:gm2+dAd+kYKav2etRT8PQJdBE+vVDO8E9s6OLi:hBJv2mRT8PaBEgVdi

Score
10/10
vidar916stealer

Malware Config

Extracted

Family

vidar

Version

40

Botnet

916

C2

https://lenak513.tumblr.com/

Attributes
  • profile_id

    916

Targets

    • Target

      2de5bcc92a19c3f567cd2ce58a6ba3c0

    • Size

      543KB

    • MD5

      2de5bcc92a19c3f567cd2ce58a6ba3c0

    • SHA1

      32190e5525e69ddb0d2aab9878eeab7d95f85f47

    • SHA256

      2cb1c1ad78901979b10afd1d286242c79d4ac5d83a081ac8608b83c035766d12

    • SHA512

      0acfec9c5d846904ab2738390b2362ce94342d32859c5c972b8fea948a62b9c1bcb74153eb7a2f56f349d49ae5d6690572a4c8300f2c2efb80b786c3ac2407fe

    • SSDEEP

      12288:gm2+dAd+kYKav2etRT8PQJdBE+vVDO8E9s6OLi:hBJv2mRT8PaBEgVdi

    Score
    10/10
    vidar916stealer
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks