vidar | 4ce552a5688df3a6055a16c8bc8222e8fbe39fadcde5c254fc9c33d53774ed3c | Triage

Sharing

General

Target

4ce552a5688df3a6055a16c8bc8222e8fbe39fadcde5c254fc9c33d53774ed3c
Size

368KB
Sample

240524-w7fn8afb79
MD5

a828a215b29ebde1d8119809676ae4bb
SHA1

b857dc17fb76ab84afdd042770dcbd7f062ba4ad
SHA256

4ce552a5688df3a6055a16c8bc8222e8fbe39fadcde5c254fc9c33d53774ed3c
SHA512

e5ee58451cb4075dc11506e938265c96f3e46fa963f820d8d8002fe6c255939a0b06d65aa1bd0277719ed611d743d2d92353f8977641977de6bba2f81fc84d0e
SSDEEP

6144:PHd2snwZDkCUbuu3zt3FrNPMXDuOYijvafTtfhDV9oUBiljAsC:PHd2sncDkC03JFlMXKujvafTBhDV9mS

Score

10^/10

vidar 855

Malware Config

Extracted

Family

vidar

Version

2.4

Botnet

855

C2

https://t.me/gurutist

https://steamcommunity.com/profiles/76561199476091435

http://95.216.164.28:80

Attributes

profile_id
855
user_agent
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36

Targets

- Target
  
  4ce552a5688df3a6055a16c8bc8222e8fbe39fadcde5c254fc9c33d53774ed3c
- Size
  
  368KB
- MD5
  
  a828a215b29ebde1d8119809676ae4bb
- SHA1
  
  b857dc17fb76ab84afdd042770dcbd7f062ba4ad
- SHA256
  
  4ce552a5688df3a6055a16c8bc8222e8fbe39fadcde5c254fc9c33d53774ed3c
- SHA512
  
  e5ee58451cb4075dc11506e938265c96f3e46fa963f820d8d8002fe6c255939a0b06d65aa1bd0277719ed611d743d2d92353f8977641977de6bba2f81fc84d0e
- SSDEEP
  
  6144:PHd2snwZDkCUbuu3zt3FrNPMXDuOYijvafTtfhDV9oUBiljAsC:PHd2sncDkC03JFlMXKujvafTBhDV9mS
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2