Overview

overview

10

Static

static

10

624-116-0x...ry.exe

windows7-x64

10

624-116-0x...ry.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    624-116-0x0000000001180000-0x0000000001725000-memory.dmp

  • Size

    5.6MB

  • Sample

    240126-hpk94agce3

  • MD5

    494b65a8e14650cf79fb56c95d517b88

  • SHA1

    0881aacff85a368c9bd744a99225615df8d88a95

  • SHA256

    2d6de52c2d409ae51954c32bb0b5047963be89f54a45937aa4f01dae97c18943

  • SHA512

    8c037eaf2f369f43a3b8bdff323b68f62506561614f1c20ec8c1e7715d6e5ccbe79ff1a2e3a7b8d9ec3e8b81f90139dcc4cb90811ab1d1ba5360088de307bb0b

  • SSDEEP

    49152:l1gAEzhvvykh5g/A0T7IH5tw+SXdea0G8NFKYA5P:l1gAWXyk04aIfw+SQzNFKdP

Score
10/10
vidar6c0faa9cbe0f1e72b99db130f3477024stealer

Malware Config

Extracted

Family

vidar

Version

7.5

Botnet

6c0faa9cbe0f1e72b99db130f3477024

C2

https://t.me/bogotatg

https://steamcommunity.com/profiles/76561199621829149
Attributes
  • profile_id_v2

    6c0faa9cbe0f1e72b99db130f3477024

  • user_agent

    Mozilla/5.0 (Macintosh; Intel Mac OS X 11_3) Chrome/90.0.4430.93 Safari/537.36 Vivaldi/3.7

Targets

    • Target

      624-116-0x0000000001180000-0x0000000001725000-memory.dmp

    • Size

      5.6MB

    • MD5

      494b65a8e14650cf79fb56c95d517b88

    • SHA1

      0881aacff85a368c9bd744a99225615df8d88a95

    • SHA256

      2d6de52c2d409ae51954c32bb0b5047963be89f54a45937aa4f01dae97c18943

    • SHA512

      8c037eaf2f369f43a3b8bdff323b68f62506561614f1c20ec8c1e7715d6e5ccbe79ff1a2e3a7b8d9ec3e8b81f90139dcc4cb90811ab1d1ba5360088de307bb0b

    • SSDEEP

      49152:l1gAEzhvvykh5g/A0T7IH5tw+SXdea0G8NFKYA5P:l1gAWXyk04aIfw+SQzNFKdP

    Score
    10/10
    vidarstealer
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks