vidar

General

Target

file.exe
Size

210KB
Sample

240301-ldly2aeh9t
MD5

57359f1a71b3c9f2e76631a70fc99aaf
SHA1

8f11248f7e18e8196d1bad3b00d17d22149ecf05
SHA256

a6f08a3f8e1a8c2bbc982aaa662992c1d7400443e474f622d682d38ed7148d6c
SHA512

feda82b26dd483e9b6f1c4be35b23d4c011dbe3403f39beb4368fe62d07d4f2b16f80546ef49597766b1e86f8a03076efcab8f7b5cdf51b087a91e56a95754f3
SSDEEP

3072:uDineOw9UM7uGMjlXSDDG17S+/uD/jrumkLa7rIzHInk2Sv1fo:rneOGUrlyG12qQ/MzoVm

Score

10^/10

Malware Config

Extracted

Family

vidar

Version

8

Botnet

438c7562661d92141bb0adbe01c2fc5f

C2

https://steamcommunity.com/profiles/76561199644883218

https://t.me/neoschats

Attributes

profile_id_v2
438c7562661d92141bb0adbe01c2fc5f
user_agent
Mozilla/5.0 (Linux; Android 11; M2102J20SG) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/97.0.4692.99 Mobile Safari/537.36 EdgA/97.0.1072.78

Targets

- Target
  
  file.exe
- Size
  
  210KB
- MD5
  
  57359f1a71b3c9f2e76631a70fc99aaf
- SHA1
  
  8f11248f7e18e8196d1bad3b00d17d22149ecf05
- SHA256
  
  a6f08a3f8e1a8c2bbc982aaa662992c1d7400443e474f622d682d38ed7148d6c
- SHA512
  
  feda82b26dd483e9b6f1c4be35b23d4c011dbe3403f39beb4368fe62d07d4f2b16f80546ef49597766b1e86f8a03076efcab8f7b5cdf51b087a91e56a95754f3
- SSDEEP
  
  3072:uDineOw9UM7uGMjlXSDDG17S+/uD/jrumkLa7rIzHInk2Sv1fo:rneOGUrlyG12qQ/MzoVm
Score

10^/10

vidar 438c7562661d92141bb0adbe01c2fc5f stealer
- Detect Vidar Stealer
  stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

1

T1553

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

Sharing

General

Malware Config

Extracted

Targets

Detect Vidar Stealer

MITRE ATT&CK Matrix ATT&CK v13

Tasks

static1

behavioral1

behavioral2