Overview

overview

10

Static

static

10

2000-135-0...ry.exe

windows7-x64

1

2000-135-0...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2000-135-0x0000000000400000-0x000000000046A000-memory.dmp

  • Size

    424KB

  • Sample

    240310-e26vsacf7z

  • MD5

    87b63d40112df9772333d7d3a382c988

  • SHA1

    d4db57d44f3dbd90f0fabe5ee19578528fb0bfe1

  • SHA256

    7113465bd77dd7f7216e5e96cdb696b0853bff07305608b92cb5d25179f2b8b6

  • SHA512

    775568eb260161c76c858448ae84701a6d2e93c9f8299dc07f34de7fe9487f3ab8c0b647d4e58787eb4c469cae8405904e0dbd5b4c8b5b785ddbf54741b3deae

  • SSDEEP

    6144:qtUGfUWOeEBUEhLkXj3zRG6yLQ/UNP4H2CiTTq10qhhTcAjrt:qtUGfVwUFzRG6EQ0POfiTTi0qoAjrt

Score
10/10
vidara81bcf59d85e6e13257840e65b9d1da8

Malware Config

Extracted

Family

vidar

Version

4.2

Botnet

a81bcf59d85e6e13257840e65b9d1da8

C2

https://steamcommunity.com/profiles/76561199511129510

https://t.me/rechnungsbetrag
Attributes
  • profile_id_v2

    a81bcf59d85e6e13257840e65b9d1da8

  • user_agent

    Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/75.0.3770.38 Safari/537.36 Brave/75

Targets

    • Target

      2000-135-0x0000000000400000-0x000000000046A000-memory.dmp

    • Size

      424KB

    • MD5

      87b63d40112df9772333d7d3a382c988

    • SHA1

      d4db57d44f3dbd90f0fabe5ee19578528fb0bfe1

    • SHA256

      7113465bd77dd7f7216e5e96cdb696b0853bff07305608b92cb5d25179f2b8b6

    • SHA512

      775568eb260161c76c858448ae84701a6d2e93c9f8299dc07f34de7fe9487f3ab8c0b647d4e58787eb4c469cae8405904e0dbd5b4c8b5b785ddbf54741b3deae

    • SSDEEP

      6144:qtUGfUWOeEBUEhLkXj3zRG6yLQ/UNP4H2CiTTq10qhhTcAjrt:qtUGfVwUFzRG6EQ0POfiTTi0qoAjrt

    Score
    3/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks