Overview

overview

10

Static

static

10

824-107-0x...ry.exe

windows7-x64

3

824-107-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    824-107-0x0000000000400000-0x0000000000932000-memory.dmp

  • Size

    5.2MB

  • MD5

    9bf6e1c02d6280d28b4d0250ef3b7d1d

  • SHA1

    5a6011e8735db912dfe5630531b4539219a5ee1a

  • SHA256

    b99d5058b6261198527c5b952abbb7c32dc4521a8047a4e699d4b18383763c93

  • SHA512

    cd19b436f0a8d35df050e439fb0d5a66f48ab02338b57825073c1da34059939e6c10898dfdde92542572d78b64e5a1f9f2ab7d14196733c86495ad702b1398c8

  • SSDEEP

    6144:wZyB580Z7QZMjk1YcdtL1ySHVYBNfqqFa9t9hS2Ai49hP893Tu:wZynlZ7OdthyOWNfqqF+t2th0Du

Score
10/10
0a8c8136c602bbb52b12c6f2ef424259vidar

Malware Config

Extracted

Family

vidar

Version

3.9

Botnet

0a8c8136c602bbb52b12c6f2ef424259

C2

https://steamcommunity.com/profiles/76561199263069598

https://t.me/cybehost
Attributes
  • profile_id_v2

    0a8c8136c602bbb52b12c6f2ef424259

  • user_agent

    Mozilla/5.0 (compatible; Konqueror/3.5; Linux) KHTML/3.5.7 (like Gecko) (Debian)

Signatures

  • Vidar family
    vidar
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 824-107-0x0000000000400000-0x0000000000932000-memory.dmp
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections