vidar | 9f685df11e2b24e55ae610d8fe4f9ea005b8dba84d4de97be0cce7fc7ae3c5ca | Triage

Sharing

General

Target

9f685df11e2b24e55ae610d8fe4f9ea005b8dba84d4de97be0cce7fc7ae3c5ca
Size

208KB
Sample

240425-2b96vafh81
MD5

9ec7f08c85bfa1b267761f225b68ab0b
SHA1

8b11b85782a3d967c7461ced5abf0827587638ca
SHA256

9f685df11e2b24e55ae610d8fe4f9ea005b8dba84d4de97be0cce7fc7ae3c5ca
SHA512

3f363a9339d92dfb789fd9005806e6008cee922838769bd15be83ede0adb50bf332230762700f784b05d5cf32f72e5a9e7611d528c4666d7819f5272c84b1b31
SSDEEP

3072:AZWAfSR9CehJX4rRUiAPukFhm8qfuDUM41wvnFsocOHYpk5GK+lGjCQYpY:WDEBbAUUkFhfDs1w/uFrYjCQYp

Score

10^/10

vidar stealer

Malware Config

Extracted

Family

vidar

C2

https://steamcommunity.com/profiles/76561199677575543

https://t.me/snsb82

Attributes

user_agent
Mozilla/5.0 (Windows NT 10.0; rv:109.0) Gecko/20100101 Firefox/115.0

Targets

- Target
  
  9f685df11e2b24e55ae610d8fe4f9ea005b8dba84d4de97be0cce7fc7ae3c5ca
- Size
  
  208KB
- MD5
  
  9ec7f08c85bfa1b267761f225b68ab0b
- SHA1
  
  8b11b85782a3d967c7461ced5abf0827587638ca
- SHA256
  
  9f685df11e2b24e55ae610d8fe4f9ea005b8dba84d4de97be0cce7fc7ae3c5ca
- SHA512
  
  3f363a9339d92dfb789fd9005806e6008cee922838769bd15be83ede0adb50bf332230762700f784b05d5cf32f72e5a9e7611d528c4666d7819f5272c84b1b31
- SSDEEP
  
  3072:AZWAfSR9CehJX4rRUiAPukFhm8qfuDUM41wvnFsocOHYpk5GK+lGjCQYpY:WDEBbAUUkFhfDs1w/uFrYjCQYp
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2