vidar | 216dd2b6a6f39efdab4f5cc40f5c35efbea49da601d283d8b268ed1dc54e93fe | Triage

Submit
Reports

Overview

overview

Static

static

3

d5c0cd8100...94.exe

windows7-x64

d5c0cd8100...94.exe

windows10-2004-x64

Sharing

General

Target

d5c0cd8100ef070303cbc6a1a422bd94
Size

593KB
Sample

240319-lakxkagg7x
MD5

d5c0cd8100ef070303cbc6a1a422bd94
SHA1

1530cd1e61d8fe0d25d3058b2c3df04c31e4d2e4
SHA256

216dd2b6a6f39efdab4f5cc40f5c35efbea49da601d283d8b268ed1dc54e93fe
SHA512

b06a9f872bc66d84f366e8cb813508f677b382b6bc1b07572f8651b416792a3ee97b84f5d83eebfc70281076bbdd733067bd513320cbaa359da2083ef2e79c71
SSDEEP

12288:O5AjmTKC2y61v9a/z8rKV66dPnfqoJdmXT8rnsSc:Om4K7yBUKc65fq/8rs

Score

10^/10

vidar 517 stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d5c0cd8100ef070303cbc6a1a422bd94.exe

Resource

win7-20240221-en

vidar 517 stealer

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

d5c0cd8100ef070303cbc6a1a422bd94.exe

Resource

win10v2004-20240226-en

vidar 517 stealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

40.2

Botnet

517

C2

https://kipriauka.tumblr.com/

Attributes

profile_id
517

Targets

- Target
  
  d5c0cd8100ef070303cbc6a1a422bd94
- Size
  
  593KB
- MD5
  
  d5c0cd8100ef070303cbc6a1a422bd94
- SHA1
  
  1530cd1e61d8fe0d25d3058b2c3df04c31e4d2e4
- SHA256
  
  216dd2b6a6f39efdab4f5cc40f5c35efbea49da601d283d8b268ed1dc54e93fe
- SHA512
  
  b06a9f872bc66d84f366e8cb813508f677b382b6bc1b07572f8651b416792a3ee97b84f5d83eebfc70281076bbdd733067bd513320cbaa359da2083ef2e79c71
- SSDEEP
  
  12288:O5AjmTKC2y61v9a/z8rKV66dPnfqoJdmXT8rnsSc:Om4K7yBUKc65fq/8rs
Score

10^/10

vidar 517 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

vidar517stealer

behavioral2

vidar517stealer

© 2018-2024

Terms | Privacy