vidar | e8c153bf71ba61edec1ff5025d79688b7ffbb963f21532ddbcc3c4a1cbc87a24 | Triage

Submit
Reports

Overview

overview

Static

static

3

db697ca3d7...17.exe

windows7-x64

db697ca3d7...17.exe

windows10-2004-x64

Sharing

General

Target

db697ca3d7452b522d8260c7ec2a2017
Size

599KB
Sample

240321-mmgw4sba6v
MD5

db697ca3d7452b522d8260c7ec2a2017
SHA1

bcc4ba0fad283e127e3675ac48aa31ecc76a103f
SHA256

e8c153bf71ba61edec1ff5025d79688b7ffbb963f21532ddbcc3c4a1cbc87a24
SHA512

64c58ef74acf4953d44ea4dfde26a6ec89dfd4adbb930a9cdc2624534f349ee735b8ee14b2ad0e7ebc857a678102dadbfcb9d10940bc83239f0c2ef86f784cef
SSDEEP

12288:K4sGS/6JNXjonW731FCccV+z+dnKxdQ0LVHDV/pZghpfUW6P3U18F+P:RS/6wWjjvMKQeHNfg7Em8AP

Score

10^/10

vidar 916 stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

db697ca3d7452b522d8260c7ec2a2017.exe

Resource

win7-20240221-en

vidar 916 stealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

db697ca3d7452b522d8260c7ec2a2017.exe

Resource

win10v2004-20231215-en

vidar 916 stealer

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

40.1

Botnet

916

C2

https://eduarroma.tumblr.com/

Attributes

profile_id
916

Targets

- Target
  
  db697ca3d7452b522d8260c7ec2a2017
- Size
  
  599KB
- MD5
  
  db697ca3d7452b522d8260c7ec2a2017
- SHA1
  
  bcc4ba0fad283e127e3675ac48aa31ecc76a103f
- SHA256
  
  e8c153bf71ba61edec1ff5025d79688b7ffbb963f21532ddbcc3c4a1cbc87a24
- SHA512
  
  64c58ef74acf4953d44ea4dfde26a6ec89dfd4adbb930a9cdc2624534f349ee735b8ee14b2ad0e7ebc857a678102dadbfcb9d10940bc83239f0c2ef86f784cef
- SSDEEP
  
  12288:K4sGS/6JNXjonW731FCccV+z+dnKxdQ0LVHDV/pZghpfUW6P3U18F+P:RS/6wWjjvMKQeHNfg7Em8AP
Score

10^/10

vidar 916 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

vidar916stealer

behavioral2

vidar916stealer

© 2018-2024

Terms | Privacy