General
-
Target
bd1a94b7afc34843b33c32ed3c3613f0
-
Size
796KB
-
Sample
240309-3nfcnsef5y
-
MD5
bd1a94b7afc34843b33c32ed3c3613f0
-
SHA1
06d293b2f9921fbe8e6861387622f6034fb4da8c
-
SHA256
c4e584cf945824aa5c88fa352b2a598695ae61ac591a1a4e7580503b4b8a3402
-
SHA512
28533f33cca14da40298c4f0377509b0cc93b2b999b71f705ba8ef50eabd588c0895f812ea175c18ccf4f90b18b4f97bf9856d84aec971981709030b144aef88
-
SSDEEP
24576:2scQPFc8HTWK0g+W2r7fiYBlh73yTLeV38HuHf2D:2xQSUDV+W2TR7CeVM5
Static task
static1
Behavioral task
behavioral1
Sample
bd1a94b7afc34843b33c32ed3c3613f0.exe
Resource
win7-20240220-en
Malware Config
Extracted
vidar
39.9
921
https://prophefliloc.tumblr.com/
-
profile_id
921
Targets
-
-
Target
bd1a94b7afc34843b33c32ed3c3613f0
-
Size
796KB
-
MD5
bd1a94b7afc34843b33c32ed3c3613f0
-
SHA1
06d293b2f9921fbe8e6861387622f6034fb4da8c
-
SHA256
c4e584cf945824aa5c88fa352b2a598695ae61ac591a1a4e7580503b4b8a3402
-
SHA512
28533f33cca14da40298c4f0377509b0cc93b2b999b71f705ba8ef50eabd588c0895f812ea175c18ccf4f90b18b4f97bf9856d84aec971981709030b144aef88
-
SSDEEP
24576:2scQPFc8HTWK0g+W2r7fiYBlh73yTLeV38HuHf2D:2xQSUDV+W2TR7CeVM5
-
Vidar Stealer
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-