vidar | 0fe40289008f481b84b73f77c87efd5a737df057e19d9799a7c8e5b0b3a29539 | Triage

Submit
Reports

Overview

overview

Static

static

1

ad91056d75...19.exe

windows7-x64

ad91056d75...19.exe

windows10-2004-x64

Sharing

General

Target

ad91056d751fd1a37689daaa789c2e19
Size

599KB
Sample

240229-dy342scb9w
MD5

ad91056d751fd1a37689daaa789c2e19
SHA1

52b17f69cb9a921a678b8d7ed17e8a490c10a93a
SHA256

0fe40289008f481b84b73f77c87efd5a737df057e19d9799a7c8e5b0b3a29539
SHA512

13aacf2969d4e4e8ee30b26fb6016cbbe72474719d2a44c30941c07bb2909ec23b4a860e994ceb7b782d4964dc38e341bd96a41a239fe5d24e5815baaf54f860
SSDEEP

12288:S2Vk7izDbNku5ZuX86JY1oowOZ6XxAiVrjJfostVYrtIj:Sr49ku58XfeXv6T7XHstIj

Score

10^/10

vidar 903 stealer

Static task

static1

Behavioral task

behavioral1

Sample

ad91056d751fd1a37689daaa789c2e19.exe

Resource

win7-20240221-en

vidar 903 stealer

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

ad91056d751fd1a37689daaa789c2e19.exe

Resource

win10v2004-20240226-en

vidar 903 stealer

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

39.8

Botnet

903

C2

https://xeronxikxxx.tumblr.com/

Attributes

profile_id
903

Targets

- Target
  
  ad91056d751fd1a37689daaa789c2e19
- Size
  
  599KB
- MD5
  
  ad91056d751fd1a37689daaa789c2e19
- SHA1
  
  52b17f69cb9a921a678b8d7ed17e8a490c10a93a
- SHA256
  
  0fe40289008f481b84b73f77c87efd5a737df057e19d9799a7c8e5b0b3a29539
- SHA512
  
  13aacf2969d4e4e8ee30b26fb6016cbbe72474719d2a44c30941c07bb2909ec23b4a860e994ceb7b782d4964dc38e341bd96a41a239fe5d24e5815baaf54f860
- SSDEEP
  
  12288:S2Vk7izDbNku5ZuX86JY1oowOZ6XxAiVrjJfostVYrtIj:Sr49ku58XfeXv6T7XHstIj
Score

10^/10

vidar 903 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

vidar903stealer

behavioral2

vidar903stealer

© 2018-2024

Terms | Privacy