vidar | 75335b3788d657c929ae199bb9b9c25e8d1fc51c9cb7b1e18ea1e745c5f2e25d | Triage

Submit
Reports

Overview

overview

Static

static

3

970bca241f...18.exe

windows7-x64

970bca241f...18.exe

windows10-2004-x64

Sharing

General

Target

970bca241f35b914f4ad72d15cb5b638_JaffaCakes118
Size

748KB
Sample

240402-zseedsdd6t
MD5

970bca241f35b914f4ad72d15cb5b638
SHA1

698419e5b9f6dd2c00b8ac60188c5dd9afab74d9
SHA256

75335b3788d657c929ae199bb9b9c25e8d1fc51c9cb7b1e18ea1e745c5f2e25d
SHA512

0261a2f6ef5b7fa88ec816fea7337ae25e4b0edcf25c056b6f3f04e90a46b2a47c0822b0650ba40c73ca1d31255e25089d01a9374efa540ebe24b804a80d62ea
SSDEEP

12288:Y3mbRX2Aezoz0w+LsH0Ahhhox8xDDp/0DP3bGBFLIss+TDKenNaG:gmMAEe0w+AHrZfDt03bG7Xv

Score

10^/10

vidar 933 stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

970bca241f35b914f4ad72d15cb5b638_JaffaCakes118.exe

Resource

win7-20240221-en

vidar 933 stealer

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

970bca241f35b914f4ad72d15cb5b638_JaffaCakes118.exe

Resource

win10v2004-20240226-en

vidar 933 stealer

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

41.4

Botnet

933

C2

https://mas.to/@sslam

Attributes

profile_id
933

Targets

- Target
  
  970bca241f35b914f4ad72d15cb5b638_JaffaCakes118
- Size
  
  748KB
- MD5
  
  970bca241f35b914f4ad72d15cb5b638
- SHA1
  
  698419e5b9f6dd2c00b8ac60188c5dd9afab74d9
- SHA256
  
  75335b3788d657c929ae199bb9b9c25e8d1fc51c9cb7b1e18ea1e745c5f2e25d
- SHA512
  
  0261a2f6ef5b7fa88ec816fea7337ae25e4b0edcf25c056b6f3f04e90a46b2a47c0822b0650ba40c73ca1d31255e25089d01a9374efa540ebe24b804a80d62ea
- SSDEEP
  
  12288:Y3mbRX2Aezoz0w+LsH0Ahhhox8xDDp/0DP3bGBFLIss+TDKenNaG:gmMAEe0w+AHrZfDt03bG7Xv
Score

10^/10

vidar 933 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

vidar933stealer

behavioral2

vidar933stealer

© 2018-2024

Terms | Privacy