Overview

overview

10

Static

static

10

2024-03-12...ia.exe

windows7-x64

1

2024-03-12...ia.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-12_68fd6b33df4c697300fd63ee42ed75a9_mafia

  • Size

    428KB

  • MD5

    68fd6b33df4c697300fd63ee42ed75a9

  • SHA1

    95020e81ed8c44cca4055d7fb651519ba5dd22a0

  • SHA256

    d3f5ece959dd95f2bfe26b9bbb721214b035b17371e83023345b3ac59fd64c95

  • SHA512

    2ca7a88a8c5906cc83cc09a021bfb111b1a7a44ed7d92a9a6d882c34fe259ca229c1ceec1dde72fcef4e8db74c924b9a13b662ff8cbee7aaadd880815938ea57

  • SSDEEP

    6144:4keehzAsTLPXhmXtI88Ndrb8R2edHdeNonXYS6gsuhIa:4keehT7hpzg4C9eNonLs

Score
10/10
vidar

Malware Config

Signatures

  • Detect binaries embedding considerable number of cryptocurrency wallet browser extension IDs. 1 IoCs
  • Detects Windows executables referencing non-Windows User-Agents 1 IoCs
  • Vidar family
    vidar
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-03-12_68fd6b33df4c697300fd63ee42ed75a9_mafia
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections