Overview

overview

10

Static

static

10

1476-51-0x...ry.exe

windows7-x64

1

1476-51-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1476-51-0x0000000000600000-0x0000000000671000-memory.dmp

  • Size

    452KB

  • Sample

    240527-pnzjnaca4v

  • MD5

    314b8db3e7adb9eaf9bc8a107374a68b

  • SHA1

    4a31b2b3a737f9d8dd5bc12ba4972a28493b5a9c

  • SHA256

    f0884c4d32ddb2b5768ba5bcbb78fcebfad9e00c7a5970d65402c468b2f97b37

  • SHA512

    1eb0341fe8272b59bda14c71b055e739fa5e937dfe96a403f0e1104ea9af796c2f2a01ef126d5dcab6d0064794477a76bb940b4f42eff93cf0fecd39f7e1d110

  • SSDEEP

    6144:Gtm87VVtTucCQysJV+oa6QUZYkXVY1ck8eylhePqXAWk:Gtm87/pi6QgYQVY1ck8eyKPqwN

Score
10/10
vidar4148a04e73d68a34036f16a82c1d1a47

Malware Config

Extracted

Family

vidar

Version

3.7

Botnet

4148a04e73d68a34036f16a82c1d1a47

C2

https://steamcommunity.com/profiles/76561199501059503

https://t.me/mastersbots
Attributes
  • profile_id_v2

    4148a04e73d68a34036f16a82c1d1a47

  • user_agent

    Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/112.0

Targets

    • Target

      1476-51-0x0000000000600000-0x0000000000671000-memory.dmp

    • Size

      452KB

    • MD5

      314b8db3e7adb9eaf9bc8a107374a68b

    • SHA1

      4a31b2b3a737f9d8dd5bc12ba4972a28493b5a9c

    • SHA256

      f0884c4d32ddb2b5768ba5bcbb78fcebfad9e00c7a5970d65402c468b2f97b37

    • SHA512

      1eb0341fe8272b59bda14c71b055e739fa5e937dfe96a403f0e1104ea9af796c2f2a01ef126d5dcab6d0064794477a76bb940b4f42eff93cf0fecd39f7e1d110

    • SSDEEP

      6144:Gtm87VVtTucCQysJV+oa6QUZYkXVY1ck8eylhePqXAWk:Gtm87/pi6QgYQVY1ck8eyKPqwN

    Score
    3/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks