General
-
Target
9b0da8ab12d9ca7cc05b9553ba3d3407e4ee38cb9a74298096022b2b46563fb2
-
Size
289KB
-
Sample
240421-sxyv9sef6t
-
MD5
a04031208441077a014f42095ff86107
-
SHA1
de1506eb54b9947b4de069c87bb1103bf17a08ed
-
SHA256
9b0da8ab12d9ca7cc05b9553ba3d3407e4ee38cb9a74298096022b2b46563fb2
-
SHA512
851741fd1856058c4c759392cae2d4694e05a9e7098b8e50fccc601bd588ff0c92dcdb577d7937e7d4c73879394803b13d2f1eacd72488b0d3c3c226929b81c6
-
SSDEEP
3072:QOKV/JhkCZrraOTzo+fGN2ZDFlYJ0YeA4Mcjv3SSyrqwLIY7Ni1KfqbdonRMIIyZ:uXtPJoqYYZCBVIYA6iQeIL8E
Static task
static1
Behavioral task
behavioral1
Sample
9b0da8ab12d9ca7cc05b9553ba3d3407e4ee38cb9a74298096022b2b46563fb2.exe
Resource
win10v2004-20240412-en
Malware Config
Extracted
vidar
https://steamcommunity.com/profiles/76561199673019888
https://t.me/irfail
-
user_agent
Mozilla/5.0 (Windows NT 10.0; rv:109.0) Gecko/20100101 Firefox/115.0
Targets
-
-
Target
9b0da8ab12d9ca7cc05b9553ba3d3407e4ee38cb9a74298096022b2b46563fb2
-
Size
289KB
-
MD5
a04031208441077a014f42095ff86107
-
SHA1
de1506eb54b9947b4de069c87bb1103bf17a08ed
-
SHA256
9b0da8ab12d9ca7cc05b9553ba3d3407e4ee38cb9a74298096022b2b46563fb2
-
SHA512
851741fd1856058c4c759392cae2d4694e05a9e7098b8e50fccc601bd588ff0c92dcdb577d7937e7d4c73879394803b13d2f1eacd72488b0d3c3c226929b81c6
-
SSDEEP
3072:QOKV/JhkCZrraOTzo+fGN2ZDFlYJ0YeA4Mcjv3SSyrqwLIY7Ni1KfqbdonRMIIyZ:uXtPJoqYYZCBVIYA6iQeIL8E
-
Detect Vidar Stealer
-
Suspicious use of SetThreadContext
-