vidar | 5e171a8f1339b1d3ea649df73606f70f8fd6e1821b160471822011a1719d4b59 | Triage

Submit
Reports

Overview

overview

Static

static

3

SyntaxPlay...er.exe

windows11-21h2-x64

Sharing

General

Target

SyntaxPlayerLauncher.exe
Size

2.0MB
Sample

240423-sdwxkahc66
MD5

729d8e93628f2a42a69733012ee8b486
SHA1

0bbc4af1e89e5d37d3530e134525cbd323d04d1c
SHA256

5e171a8f1339b1d3ea649df73606f70f8fd6e1821b160471822011a1719d4b59
SHA512

89fc40ebf24bfb844f6c351b51175eafe6b448258231d89b12120b5c373b3511b08c153007da4afccb2c2c1e1175b770780cff21ffd7bd4cbd0ce9e213bffdc5
SSDEEP

49152:Rzsw2YTKoHnPZFBasug0uWcTk6/N4zc3wFWD77kdBoVjvyA:Rgw2cjHnRFBasu3uWcTk6/N4zcA3ivy

Score

10^/10

vidar stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

SyntaxPlayerLauncher.exe

Resource

win11-20240412-en

windows11-21h2-x64

16 signatures

1800 seconds

Malware Config

Targets

- Target
  
  SyntaxPlayerLauncher.exe
- Size
  
  2.0MB
- MD5
  
  729d8e93628f2a42a69733012ee8b486
- SHA1
  
  0bbc4af1e89e5d37d3530e134525cbd323d04d1c
- SHA256
  
  5e171a8f1339b1d3ea649df73606f70f8fd6e1821b160471822011a1719d4b59
- SHA512
  
  89fc40ebf24bfb844f6c351b51175eafe6b448258231d89b12120b5c373b3511b08c153007da4afccb2c2c1e1175b770780cff21ffd7bd4cbd0ce9e213bffdc5
- SSDEEP
  
  49152:Rzsw2YTKoHnPZFBasug0uWcTk6/N4zc3wFWD77kdBoVjvyA:Rgw2cjHnRFBasu3uWcTk6/N4zcA3ivy
Score

10^/10

vidar stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Downloads MZ/PE file
- Executes dropped EXE
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy