Overview

overview

10

Static

static

10

1448-243-0...ry.exe

windows7-x64

1

1448-243-0...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1448-243-0x0000000000400000-0x000000000046A000-memory.dmp

  • Size

    424KB

  • Sample

    240311-1sln5she62

  • MD5

    43731fcdf7554c5dee40976ce4584e75

  • SHA1

    03caa9a5be12c2b9be1e40633e520708f52eef84

  • SHA256

    7cd8fffa40a7f79b93432cf96e9b73651300b2c063dad0697967eead35ca1196

  • SHA512

    73f85bd4269692aba607f741744efe92761a6d05424be9489d7365375964cc5819ee5c44c06746e73c4e496217562a09b60d35aa11678d08d4acc9dd78a79d7e

  • SSDEEP

    6144:TBA0i2uim7rAPtf9w8zSRWBt9JPpr+hT5WzYIRh6pI37u1:TG0iwj9w8zS4BPJPpr+ZIH0

Score
10/10
vidara129a8292a021d62796bfced1018aa1f

Malware Config

Extracted

Family

vidar

Version

4.3

Botnet

a129a8292a021d62796bfced1018aa1f

C2

https://steamcommunity.com/profiles/76561199514261168

https://t.me/kamaprimo
Attributes
  • profile_id_v2

    a129a8292a021d62796bfced1018aa1f

  • user_agent

    Mozilla/5.0 (Linux; U; Tizen 2.0; en-us) AppleWebKit/537.1 (KHTML, like Gecko) Mobile TizenBrowser/2.0

Targets

    • Target

      1448-243-0x0000000000400000-0x000000000046A000-memory.dmp

    • Size

      424KB

    • MD5

      43731fcdf7554c5dee40976ce4584e75

    • SHA1

      03caa9a5be12c2b9be1e40633e520708f52eef84

    • SHA256

      7cd8fffa40a7f79b93432cf96e9b73651300b2c063dad0697967eead35ca1196

    • SHA512

      73f85bd4269692aba607f741744efe92761a6d05424be9489d7365375964cc5819ee5c44c06746e73c4e496217562a09b60d35aa11678d08d4acc9dd78a79d7e

    • SSDEEP

      6144:TBA0i2uim7rAPtf9w8zSRWBt9JPpr+hT5WzYIRh6pI37u1:TG0iwj9w8zS4BPJPpr+ZIH0

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks