vidar | 598d944c8f0ef8d8536487bb9b62ff8fbf6758b37da5132e17fb31e07acddc65 | Triage

Submit
Reports

Overview

overview

Static

static

3

784d1f5c2e...8d.exe

windows7-x64

784d1f5c2e...8d.exe

windows10-2004-x64

Sharing

General

Target

784d1f5c2ef013a0523ca0616f62698d
Size

2.4MB
Sample

240126-y4wblsdeh6
MD5

784d1f5c2ef013a0523ca0616f62698d
SHA1

e4c76b676705a8ffcecb6fc8a9c2424300c9bd6c
SHA256

598d944c8f0ef8d8536487bb9b62ff8fbf6758b37da5132e17fb31e07acddc65
SHA512

3d08427e5fa3bf1cc31d0e8b97564c977ae8ea74afb5c3b2d87e36c63213148a85d84cd4a6f4a3d694459a79474f370b9cd131469f6a57e6c6ff6683038d7998
SSDEEP

24576:6mxGB0x427UGZgDcF8B9JgQLsuJp+t/wF1FWQ70JKlXQPsnrjv/pbxH0LGn5LtpL:6H

Score

10^/10

vidar 921 stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

784d1f5c2ef013a0523ca0616f62698d.exe

Resource

win7-20231215-en

vidar 921 stealer

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

784d1f5c2ef013a0523ca0616f62698d.exe

Resource

win10v2004-20231222-en

vidar 921 stealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

40.1

Botnet

921

C2

https://eduarroma.tumblr.com/

Attributes

profile_id
921

Targets

- Target
  
  784d1f5c2ef013a0523ca0616f62698d
- Size
  
  2.4MB
- MD5
  
  784d1f5c2ef013a0523ca0616f62698d
- SHA1
  
  e4c76b676705a8ffcecb6fc8a9c2424300c9bd6c
- SHA256
  
  598d944c8f0ef8d8536487bb9b62ff8fbf6758b37da5132e17fb31e07acddc65
- SHA512
  
  3d08427e5fa3bf1cc31d0e8b97564c977ae8ea74afb5c3b2d87e36c63213148a85d84cd4a6f4a3d694459a79474f370b9cd131469f6a57e6c6ff6683038d7998
- SSDEEP
  
  24576:6mxGB0x427UGZgDcF8B9JgQLsuJp+t/wF1FWQ70JKlXQPsnrjv/pbxH0LGn5LtpL:6H
Score

10^/10

vidar 921 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

vidar921stealer

behavioral2

vidar921stealer

© 2018-2024

Terms | Privacy