General
-
Target
https://mega.nz/file/c3ET3LxA#49_HTP4RPegp-b9X4jPxvk3la3osVLlV6v3xHIMW7Bg
-
Sample
240330-pjxjhaeg2x
Score
10/10
Static task
static1
URLScan task
urlscan1
Behavioral task
behavioral1
Sample
https://mega.nz/file/c3ET3LxA#49_HTP4RPegp-b9X4jPxvk3la3osVLlV6v3xHIMW7Bg
Resource
win10v2004-20240226-en
18 signatures
150 seconds
Malware Config
Extracted
Family
vidar
Botnet
7e25cb9dea2005c1daa4323828b05b69
C2
https://mogor.xyz
https://steamcommunity.com/profiles/76561199658817715
https://t.me/sa9ok
Attributes
-
profile_id_v2
7e25cb9dea2005c1daa4323828b05b69
-
user_agent
Mozilla/5.0 (Windows NT; Windows NT 10.0; en-US) AppleWebKit/534.6 (KHTML, like Gecko) Chrome/8.0.500.0 Safari/534.6
Targets
-
-
Target
https://mega.nz/file/c3ET3LxA#49_HTP4RPegp-b9X4jPxvk3la3osVLlV6v3xHIMW7Bg
Score10/10-
Detect Vidar Stealer
-
Executes dropped EXE
-
Loads dropped DLL
-
Suspicious use of SetThreadContext
-