vidar | 877361729f6caeec07146bbacb86e5ea7597085b946e5f81f79db0e0eba72035 | Triage

Submit
Reports

Overview

overview

Static

static

1

5a09e43670...81.exe

windows7-x64

5a09e43670...81.exe

windows10-2004-x64

Sharing

General

Target

5a09e436702a97b7cd507b9ec7a5b081
Size

559KB
Sample

240114-cxtnjsadgk
MD5

5a09e436702a97b7cd507b9ec7a5b081
SHA1

231d4feda57784edc8d180e825fcdbb06e4048cd
SHA256

877361729f6caeec07146bbacb86e5ea7597085b946e5f81f79db0e0eba72035
SHA512

8d4277b3005b1922c4ecb57e6b96832f1f7d127bbcd5ab0b4de16ffb61ebb2a49ecd1b3729d81d0567dec0810171adb7c9a3177919d01c4a708d9f7d3f01983f
SSDEEP

12288:nEgqgYxmZtOabCfmig5cGyS7RXusazvEGSTC5eHLCyz2OU94:EgcitVb5cm1XkzNS9CV594

Score

10^/10

vidar 903 stealer

Static task

static1

Behavioral task

behavioral1

Sample

5a09e436702a97b7cd507b9ec7a5b081.exe

Resource

win7-20231215-en

vidar 903 stealer

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

5a09e436702a97b7cd507b9ec7a5b081.exe

Resource

win10v2004-20231222-en

vidar 903 stealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

39.7

Botnet

903

C2

https://shpak125.tumblr.com/

Attributes

profile_id
903

Targets

- Target
  
  5a09e436702a97b7cd507b9ec7a5b081
- Size
  
  559KB
- MD5
  
  5a09e436702a97b7cd507b9ec7a5b081
- SHA1
  
  231d4feda57784edc8d180e825fcdbb06e4048cd
- SHA256
  
  877361729f6caeec07146bbacb86e5ea7597085b946e5f81f79db0e0eba72035
- SHA512
  
  8d4277b3005b1922c4ecb57e6b96832f1f7d127bbcd5ab0b4de16ffb61ebb2a49ecd1b3729d81d0567dec0810171adb7c9a3177919d01c4a708d9f7d3f01983f
- SSDEEP
  
  12288:nEgqgYxmZtOabCfmig5cGyS7RXusazvEGSTC5eHLCyz2OU94:EgcitVb5cm1XkzNS9CV594
Score

10^/10

vidar 903 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

vidar903stealer

behavioral2

vidar903stealer

© 2018-2024

Terms | Privacy