Overview

overview

10

Static

static

10

winprofile

windows7-x64

3

winprofile

windows10-1703-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9f685df11e2b24e55ae610d8fe4f9ea005b8dba84d4de97be0cce7fc7ae3c5ca

  • Size

    208KB

  • Sample

    240425-2b96vafh81

  • MD5

    9ec7f08c85bfa1b267761f225b68ab0b

  • SHA1

    8b11b85782a3d967c7461ced5abf0827587638ca

  • SHA256

    9f685df11e2b24e55ae610d8fe4f9ea005b8dba84d4de97be0cce7fc7ae3c5ca

  • SHA512

    3f363a9339d92dfb789fd9005806e6008cee922838769bd15be83ede0adb50bf332230762700f784b05d5cf32f72e5a9e7611d528c4666d7819f5272c84b1b31

  • SSDEEP

    3072:AZWAfSR9CehJX4rRUiAPukFhm8qfuDUM41wvnFsocOHYpk5GK+lGjCQYpY:WDEBbAUUkFhfDs1w/uFrYjCQYp

Score
10/10
vidarstealer

Malware Config

Extracted

Family

vidar

C2

https://steamcommunity.com/profiles/76561199677575543

https://t.me/snsb82
Attributes
  • user_agent

    Mozilla/5.0 (Windows NT 10.0; rv:109.0) Gecko/20100101 Firefox/115.0

Targets

    • Target

      9f685df11e2b24e55ae610d8fe4f9ea005b8dba84d4de97be0cce7fc7ae3c5ca

    • Size

      208KB

    • MD5

      9ec7f08c85bfa1b267761f225b68ab0b

    • SHA1

      8b11b85782a3d967c7461ced5abf0827587638ca

    • SHA256

      9f685df11e2b24e55ae610d8fe4f9ea005b8dba84d4de97be0cce7fc7ae3c5ca

    • SHA512

      3f363a9339d92dfb789fd9005806e6008cee922838769bd15be83ede0adb50bf332230762700f784b05d5cf32f72e5a9e7611d528c4666d7819f5272c84b1b31

    • SSDEEP

      3072:AZWAfSR9CehJX4rRUiAPukFhm8qfuDUM41wvnFsocOHYpk5GK+lGjCQYpY:WDEBbAUUkFhfDs1w/uFrYjCQYp

    Score
    3/10
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks