General

  • Target

    6b7f8069ebfedb0c90f87181afb33e254c09f8188c7293c7012d24a7337ff148

  • Size

    95KB

  • MD5

    7c6e85f1e38b1ec50d405df0156239d1

  • SHA1

    b3ede46c28872b57f5ae2d8c5c1aaec97e6478fd

  • SHA256

    6b7f8069ebfedb0c90f87181afb33e254c09f8188c7293c7012d24a7337ff148

  • SHA512

    61e044cea8220cfe3a349ed4e4d9e1e9bf0c4a1d1232fc96a6080f4d36382cee2e55f3f136365c8ba5e111ac2bef6918e37f173d2e2fdb43d60e7d50247699f9

  • SSDEEP

    1536:0OgWmjl8SqJ8fg8AwAj9n5rCQac63VjzrneBWGkdLVSJRqGEEvTrw5x8+:07WRSA8g8Awo5rmPjnneBW/hV+v0x8+

Score
10/10

Malware Config

Extracted

Family

vidar

C2

https://t.me/bu77un

https://steamcommunity.com/profiles/76561199730044335

Attributes
  • user_agent

    Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:128.1) Gecko/20100101 Firefox/128.1

Signatures

  • Detect Vidar Stealer 1 IoCs
  • Stealc family
  • Vidar family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 6b7f8069ebfedb0c90f87181afb33e254c09f8188c7293c7012d24a7337ff148
    .zip

    Password: infected

  • 177522949060fb57da49ff445edd38f2fef86c30d86603b3438b874635fbde01.exe
    .exe windows:5 windows x86 arch:x86

    14b0ac3afcc0fd8a741f8eb3917d4d03


    Headers

    Imports

    Sections