vidar | 81f5c6cd6f56a93d256dbf0314764956a2d5cc9ab4bd70ba0323ed280fe445bd | Triage

Sharing

General

Target

2676-16-0x0000000000400000-0x0000000000657000-memory.dmp
Size

2.3MB
Sample

240909-w8ehjstall
MD5

b4468a0168f661ce7033d6b4400cecda
SHA1

bba7e6ee17998c0a846f57a64c8dcf648cf36c7d
SHA256

81f5c6cd6f56a93d256dbf0314764956a2d5cc9ab4bd70ba0323ed280fe445bd
SHA512

5bfaf1c151338fd018e35881e9d8039e5a11c4974c44fbcf952a3a9f63814b1228b774093a5f34973550dc1f90d85c0dcd9ed3c2064ee6a2da43d5ee6aa19df9
SSDEEP

3072:QPZwlX9MbkzV5GdSTnQB9IzAc1xwb2b+cWN+EyrYfrBhCemDq0vpp8Hrab4dAu3m:CwlNM47G+nQTszwb2OyYvXq8E+Au3l

Score

10^/10

vidar stealer

Malware Config

Extracted

Family

vidar

C2

https://t.me/fneogr

https://t.me/edm0d

https://steamcommunity.com/profiles/76561199768374681

Attributes

user_agent
Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 OPR/110.0.0.0

Targets

- Target
  
  2676-16-0x0000000000400000-0x0000000000657000-memory.dmp
- Size
  
  2.3MB
- MD5
  
  b4468a0168f661ce7033d6b4400cecda
- SHA1
  
  bba7e6ee17998c0a846f57a64c8dcf648cf36c7d
- SHA256
  
  81f5c6cd6f56a93d256dbf0314764956a2d5cc9ab4bd70ba0323ed280fe445bd
- SHA512
  
  5bfaf1c151338fd018e35881e9d8039e5a11c4974c44fbcf952a3a9f63814b1228b774093a5f34973550dc1f90d85c0dcd9ed3c2064ee6a2da43d5ee6aa19df9
- SSDEEP
  
  3072:QPZwlX9MbkzV5GdSTnQB9IzAc1xwb2b+cWN+EyrYfrBhCemDq0vpp8Hrab4dAu3m:CwlNM47G+nQTszwb2OyYvXq8E+Au3l
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2