Overview

overview

10

Static

static

10

2024-03-12...ia.exe

windows7-x64

1

2024-03-12...ia.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-12_0b5e4844d8dfe185052313c378dea73a_mafia

  • Size

    428KB

  • MD5

    0b5e4844d8dfe185052313c378dea73a

  • SHA1

    fd2b4003e145cee812c70d8c3d867500a71bbe76

  • SHA256

    609cc99f7326ca4bbde89aaafaec695363cf40d21c743b49be530b954bd1789f

  • SHA512

    0ab348064649c8c40b0e30404ca40b8216ad615f8d71abcac8b9e91b2e0368bad7c6f94e19d0e7ef3c09bb891e6e210b6a7177db950c68a046491b085d4d3b3b

  • SSDEEP

    6144:4keehzAsTLPXhmXtI88Ndrb8R2edHdeNonXYH6gsuh3n:4keehT7hpzg4C9eNon2s

Score
10/10
vidar

Malware Config

Signatures

  • Detect binaries embedding considerable number of cryptocurrency wallet browser extension IDs. 1 IoCs
  • Detects Windows executables referencing non-Windows User-Agents 1 IoCs
  • Vidar family
    vidar
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-03-12_0b5e4844d8dfe185052313c378dea73a_mafia
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections