vidar

General

Target

2c816bef3cd7f3f367e6b94761c2bab2
Size

240KB
Sample

240228-stmntseg47
MD5

2c816bef3cd7f3f367e6b94761c2bab2
SHA1

791c10407dd5df2abee9b87afa09306bd5d7d93c
SHA256

81325d0c1a73cad7402d2020c15304cba466ecc7919061cd16762f655019c038
SHA512

e35ae3ff851fa53af16f5e4fc93aef20917d4b4f83d74bed74b972a207a1f7c83b97c8027820d8add586ee7a0b1594eb436d75fb2db657cc54c73fbfad10f9ad
SSDEEP

6144:FA3Qqn4PxoQMZIlkEPTodF8vtH5ofRaG:FaQqG6lgkWM/StH5ofR

Score

10^/10

Malware Config

Extracted

Family

vidar

Version

8

Botnet

b8a5ebfe4a0abceff8d2cd1a6c6c4024

C2

https://steamcommunity.com/profiles/76561199644883218

https://t.me/neoschats

Attributes

profile_id_v2
b8a5ebfe4a0abceff8d2cd1a6c6c4024
user_agent
Mozilla/5.0 (Linux; Android 11; M2102J20SG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/97.0.4692.99 Mobile Safari/537.36 EdgA/97.0.1072.78

Targets

- Target
  
  2c816bef3cd7f3f367e6b94761c2bab2
- Size
  
  240KB
- MD5
  
  2c816bef3cd7f3f367e6b94761c2bab2
- SHA1
  
  791c10407dd5df2abee9b87afa09306bd5d7d93c
- SHA256
  
  81325d0c1a73cad7402d2020c15304cba466ecc7919061cd16762f655019c038
- SHA512
  
  e35ae3ff851fa53af16f5e4fc93aef20917d4b4f83d74bed74b972a207a1f7c83b97c8027820d8add586ee7a0b1594eb436d75fb2db657cc54c73fbfad10f9ad
- SSDEEP
  
  6144:FA3Qqn4PxoQMZIlkEPTodF8vtH5ofRaG:FaQqG6lgkWM/StH5ofR
Score

10^/10

vidar b8a5ebfe4a0abceff8d2cd1a6c6c4024 stealer
- Detect Vidar Stealer
  stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1

T1112

Subvert Trust Controls

1

T1553

Install Root Certificate

1

T1553.004

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Detect Vidar Stealer

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2