Overview

overview

10

Static

static

3

8713202038...75.exe

windows7-x64

10

8713202038...75.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8713202038681d094b6e1b99c7491075

  • Size

    562KB

  • Sample

    240201-reb34shacl

  • MD5

    8713202038681d094b6e1b99c7491075

  • SHA1

    4623ee8a8ff43da6f294b205bdbff6e126c0cdea

  • SHA256

    a3ec725e59842fb0b5a542e6589b01b1caff0aabb86df6354b5ee592bf2bfdb4

  • SHA512

    10a3170df8728b5fc563931c5dd89c9bb337d5b49003b29e7b6a7ca4a6f1f00a076644592297f0c8ed5ac1cb12729ea065905ab7479ce5cc762195b6705ebc29

  • SSDEEP

    6144:9sQ3C3RKCjgugwso+gio7ThXWl1kYroTiupKspOQUAb6nMecYZH5ve+7Knz4qByR:uQS3cUViOG0HBpOXhMejHk3stBd

Score
10/10
vidar937stealer

Malware Config

Extracted

Family

vidar

Version

40

Botnet

937

C2

https://lenak513.tumblr.com/

Attributes
  • profile_id

    937

Targets

    • Target

      8713202038681d094b6e1b99c7491075

    • Size

      562KB

    • MD5

      8713202038681d094b6e1b99c7491075

    • SHA1

      4623ee8a8ff43da6f294b205bdbff6e126c0cdea

    • SHA256

      a3ec725e59842fb0b5a542e6589b01b1caff0aabb86df6354b5ee592bf2bfdb4

    • SHA512

      10a3170df8728b5fc563931c5dd89c9bb337d5b49003b29e7b6a7ca4a6f1f00a076644592297f0c8ed5ac1cb12729ea065905ab7479ce5cc762195b6705ebc29

    • SSDEEP

      6144:9sQ3C3RKCjgugwso+gio7ThXWl1kYroTiupKspOQUAb6nMecYZH5ve+7Knz4qByR:uQS3cUViOG0HBpOXhMejHk3stBd

    Score
    10/10
    vidar937stealer
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks