Overview

overview

10

Static

static

3

a976f97bf8...c4.exe

windows7-x64

10

a976f97bf8...c4.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a976f97bf8e4f1f3d611d7a6b5aa0dc4

  • Size

    543KB

  • Sample

    240227-shjsssca82

  • MD5

    a976f97bf8e4f1f3d611d7a6b5aa0dc4

  • SHA1

    f5fe28b66c3b67fed36712e34c1140b505d29721

  • SHA256

    ac67fb6efc8a4516f88b8ce6f1f168a773617482fb43814d0145fc949d90f637

  • SHA512

    097ba69a20f5b3c9b09113733bda6be24f2f843ea8c5666b39b7b9bcf26d8403d69940a32034847bb4530efa364022a13e2354921031f6c66a1a5df61f10f56e

  • SSDEEP

    12288:fKxunPM74ikHTMnBgxFkL7fjjQnaNeFRaq7lAwOOi:dnP/nZOL7fjk1lNi

Score
10/10
vidar916stealer

Malware Config

Extracted

Family

vidar

Version

40

Botnet

916

C2

https://lenak513.tumblr.com/

Attributes
  • profile_id

    916

Targets

    • Target

      a976f97bf8e4f1f3d611d7a6b5aa0dc4

    • Size

      543KB

    • MD5

      a976f97bf8e4f1f3d611d7a6b5aa0dc4

    • SHA1

      f5fe28b66c3b67fed36712e34c1140b505d29721

    • SHA256

      ac67fb6efc8a4516f88b8ce6f1f168a773617482fb43814d0145fc949d90f637

    • SHA512

      097ba69a20f5b3c9b09113733bda6be24f2f843ea8c5666b39b7b9bcf26d8403d69940a32034847bb4530efa364022a13e2354921031f6c66a1a5df61f10f56e

    • SSDEEP

      12288:fKxunPM74ikHTMnBgxFkL7fjjQnaNeFRaq7lAwOOi:dnP/nZOL7fjk1lNi

    Score
    10/10
    vidar916stealer
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks