vidar | d13965467fa50aea3ff16c39641e548e41ffe4098e070ec88435ccee65df2841 | Triage

Submit
Reports

Overview

overview

Static

static

3

f857a4fdf9...18.exe

windows7-x64

f857a4fdf9...18.exe

windows10-2004-x64

Sharing

General

Target

f857a4fdf90e0b701867fe5860f056d0_JaffaCakes118
Size

662KB
Sample

240418-tw1txahe65
MD5

f857a4fdf90e0b701867fe5860f056d0
SHA1

ebc3ba11e5d8f2085acccfbe9c0904691abdbcea
SHA256

d13965467fa50aea3ff16c39641e548e41ffe4098e070ec88435ccee65df2841
SHA512

a0534a23846ec87869f7993868e849904ecb1e8e850d4bc7c431ab35f7f1da580d8b1d9d9d00328d3a980019f8ad7afb79c5e3ce89e2dc33c302cfd75f0f2442
SSDEEP

12288:FplsUndSScSjCy0kvmkN8ekK8eLkyW3X6+Lgz3qKL/zgk+gw:FQUcSceCC8ekKPLkyW3KW8aKL/Z

Score

10^/10

vidar 916 stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f857a4fdf90e0b701867fe5860f056d0_JaffaCakes118.exe

Resource

win7-20240221-en

vidar 916 stealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

f857a4fdf90e0b701867fe5860f056d0_JaffaCakes118.exe

Resource

win10v2004-20240412-en

vidar 916 stealer

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

39.7

Botnet

916

C2

https://shpak125.tumblr.com/

Attributes

profile_id
916

Targets

- Target
  
  f857a4fdf90e0b701867fe5860f056d0_JaffaCakes118
- Size
  
  662KB
- MD5
  
  f857a4fdf90e0b701867fe5860f056d0
- SHA1
  
  ebc3ba11e5d8f2085acccfbe9c0904691abdbcea
- SHA256
  
  d13965467fa50aea3ff16c39641e548e41ffe4098e070ec88435ccee65df2841
- SHA512
  
  a0534a23846ec87869f7993868e849904ecb1e8e850d4bc7c431ab35f7f1da580d8b1d9d9d00328d3a980019f8ad7afb79c5e3ce89e2dc33c302cfd75f0f2442
- SSDEEP
  
  12288:FplsUndSScSjCy0kvmkN8ekK8eLkyW3X6+Lgz3qKL/zgk+gw:FQUcSceCC8ekKPLkyW3KW8aKL/Z
Score

10^/10

vidar 916 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

vidar916stealer

behavioral2

vidar916stealer

© 2018-2024

Terms | Privacy