Overview

overview

10

Static

static

1

18d33f220e...f5.exe

windows7-x64

10

18d33f220e...f5.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1419d68eebbfbebd212e616c4210d75b1907f6e25f2bb77efb3c23cc35ef658d

  • Size

    223KB

  • Sample

    240417-p4a61ahe3z

  • MD5

    af5176a7dea6af09ba0418d563bc0659

  • SHA1

    732b303ae8d160e335d1d9585c6413b4015b2d18

  • SHA256

    1419d68eebbfbebd212e616c4210d75b1907f6e25f2bb77efb3c23cc35ef658d

  • SHA512

    083bf135cccdb508a7cfc9b616f751df6c86ad70ed7933b3a78078cee44a6102085c04f399f59c8ee94ea1ab40a6d97463de6dd3de67f005a62fd2f3dcf0c996

  • SSDEEP

    6144:7BFuFkQd1xePdY0odxxgmNN3mKQetxy+/lebkRGl6bvpk0eei0:7XuVqEb+mNAmxy+tBYl6bBId0

Score
10/10
vidarstealer

Malware Config

Extracted

Family

vidar

C2

https://steamcommunity.com/profiles/76561199658817715

https://t.me/sa9ok
Attributes
  • user_agent

    Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Safari/537.36

Targets

    • Target

      18d33f220e10209ec1b7877b42cda65ca18f6c724ee3b02cb4e5263301cb68f5.exe

    • Size

      233KB

    • MD5

      8c0a534e0e8cc04b4fd714dc4105abd7

    • SHA1

      d31160e806095b499e7d8767b8c66d7643b90fef

    • SHA256

      18d33f220e10209ec1b7877b42cda65ca18f6c724ee3b02cb4e5263301cb68f5

    • SHA512

      8742f018895cbbe7120d61847b3fd8924614bb37ef9877e9d5c1300bdd845b6f6f14ab19b239f70390fb234986ad35a85c567f90f1b66c17d6d208f30c35ff55

    • SSDEEP

      6144:6mn294xHdEFKW8huhRlfF5SC3tEhx7xwcasg1gJTUV8:1xDujlfF52hZxwXsCgg8

    Score
    10/10
    vidarstealer

    • Detect Vidar Stealer

      stealer

    • Vidar

      Vidar is an infostealer based on Arkei stealer.

      stealervidar

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks