Overview

overview

10

Static

static

3

@#!!Open_9...up.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    @#!!Open_9868_Ṕ@ṨṨẄṏṛḒ~!!.zip

  • Size

    14.2MB

  • Sample

    240424-tq5wnsdb3t

  • MD5

    1ac3d1da83fc3ff0e3f1c46de3109155

  • SHA1

    0d463a1040c975bac268f7e1d9ae5b553cf68700

  • SHA256

    245ec0ba53fe72eb6c811f1ef5dd1e7e9ce320368e84b6c5dd8de646e4f59886

  • SHA512

    c2b05dacaceadc447ea3370080ec905b46234fd72c45695da008ddd6d4740753b407f62b99706103e421c30468395c3c5decc59def40d85386f2b0df85a69e88

  • SSDEEP

    393216:OEomiz+eOrK/uMBXU6yZ/EPQuz+nYbQ2qIoegfHdU1:OLHzCrK2MBXr8oQuzO0bBgP61

Score
10/10
vidar2f8c87c1f3d300758762e46e7a6b6839stealer

Malware Config

Extracted

Family

vidar

Botnet

2f8c87c1f3d300758762e46e7a6b6839

C2

https://redddog.xyz

https://steamcommunity.com/profiles/76561199677575543

https://t.me/snsb82
Attributes
  • profile_id_v2

    2f8c87c1f3d300758762e46e7a6b6839

  • user_agent

    Mozilla/5.0 (Windows NT; Windows NT 10.0; en-US) AppleWebKit/534.6 (KHTML, like Gecko) Chrome/8.0.500.0 Safari/534.6

Targets

    • Target

      @#!!Open_9868_Ṕ@ṨṨẄṏṛḒ~!!/Setup.exe

    • Size

      94KB

    • MD5

      9a4cc0d8e7007f7ef20ca585324e0739

    • SHA1

      f3e5a2e477cac4bab85940a2158eed78f2d74441

    • SHA256

      040d121a3179f49cd3f33f4bc998bc8f78b7f560bfd93f279224d69e76a06e92

    • SHA512

      54636a48141804112f5b4f2fc70cb7c959a041e5743aeedb5184091b51daa1d1a03f0016e8299c0d56d924c6c8ae585e4fc864021081ffdf1e6f3eab11dd43b3

    • SSDEEP

      1536:9M/AhIxHHWMpdPa5wiE21M8kJIGFvb1Cwn/ZDs5yf:9M4SwMpdCq/IM8uIGfV/ZDso

    Score
    10/10
    vidar2f8c87c1f3d300758762e46e7a6b6839stealer

    • Detect Vidar Stealer

      stealer

    • Vidar

      Vidar is an infostealer based on Arkei stealer.

      stealervidar

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Matrix

Tasks