Overview

overview

10

Static

static

10

2044-17-0x...ry.exe

windows7-x64

2044-17-0x...ry.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2044-17-0x0000000000400000-0x0000000000657000-memory.dmp

  • Size

    2.3MB

  • Sample

    240916-rg619s1gnb

  • MD5

    daedd09e226a7208aa9f8b9b2ee76a58

  • SHA1

    a0bc20125ec6fd1f544d00c0e710c50b5ad4d9fe

  • SHA256

    db4f00cdd28cdce7f3b983a27d3a89307d183fb3b68be1bdfa260eeeab3a1b4a

  • SHA512

    08f8d4fd444fa9c891b8d0f8ea80e7f4ce686b3a9428e8f5b8af121c40a7927343d8d160320560f6b8d115d2ab8ba37078441672dc2adca8ee003ef7c64bf83c

  • SSDEEP

    3072:xR+9MwiQ1/d0kzv4NmVcc18DM74+c9JDpdN3f5Bl5xoEq0jcp8HraqVmQdwuA:xRKMreKkzwNemDM7Ab3ox8F7wu

Score
10/10
vidarstealer

Malware Config

Extracted

Family

vidar

C2

https://t.me/edm0d

https://steamcommunity.com/profiles/76561199768374681
Attributes
  • user_agent

    Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 OPR/110.0.0.0

Targets

    • Target

      2044-17-0x0000000000400000-0x0000000000657000-memory.dmp

    • Size

      2.3MB

    • MD5

      daedd09e226a7208aa9f8b9b2ee76a58

    • SHA1

      a0bc20125ec6fd1f544d00c0e710c50b5ad4d9fe

    • SHA256

      db4f00cdd28cdce7f3b983a27d3a89307d183fb3b68be1bdfa260eeeab3a1b4a

    • SHA512

      08f8d4fd444fa9c891b8d0f8ea80e7f4ce686b3a9428e8f5b8af121c40a7927343d8d160320560f6b8d115d2ab8ba37078441672dc2adca8ee003ef7c64bf83c

    • SSDEEP

      3072:xR+9MwiQ1/d0kzv4NmVcc18DM74+c9JDpdN3f5Bl5xoEq0jcp8HraqVmQdwuA:xRKMreKkzwNemDM7Ab3ox8F7wu

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks