vidar | 751452aeb55f73e30ce29a9ea417f937

General

Target

751452aeb55f73e30ce29a9ea417f937
Size

4.2MB
MD5

751452aeb55f73e30ce29a9ea417f937
SHA1

31c99f5a602cb9681e390319ac118125df292ac8
SHA256

98963e7239206f25d3edee64ef49c81958632ef2f30ec4ea76f7ba699f82ec15
SHA512

9fa6a3fead8e742be84027aa07790db6c9aebde2ff5c550be215eb372d2660663180e1d2fb1d273922aef29144c951cda15346eb74ad73f3678ef65cb8b72f88
SSDEEP

98304:MEMSL1XPtXknaVIKQhTwd7PPq9NIG1VIthqnj2/mB+xk95azV:M+ZflgblwdrPq9hnj2/mB+kgV

Score

10^/10

34cdf5c7f317a56f0833cab4e0418c85 vidar

Malware Config

Extracted

Family

vidar

Version

2.8

Botnet

34cdf5c7f317a56f0833cab4e0418c85

C2

https://t.me/dionysus_tg

https://steamcommunity.com/profiles/76561199482248283

http://157.90.113.100:80

Attributes

profile_id_v2
34cdf5c7f317a56f0833cab4e0418c85

Signatures

Vidar family
vidar

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
751452aeb55f73e30ce29a9ea417f937

Files

751452aeb55f73e30ce29a9ea417f937
.exe windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 269KB - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

. 1D
Size: 4.2MB - Virtual size: 4.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

._oB
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

./lM
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 350KB - Virtual size: 349KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Extracted

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 269KB - Virtual size: 268KB

.rdata Size: 64KB - Virtual size: 63KB

.data Size: 7KB - Virtual size: 84KB

. 1D Size: 4.2MB - Virtual size: 4.2MB

._oB Size: 1KB - Virtual size: 1KB

./lM Size: 3.2MB - Virtual size: 3.2MB

.reloc Size: 24KB - Virtual size: 24KB

.rsrc Size: 350KB - Virtual size: 349KB

.text
Size: 269KB - Virtual size: 268KB

.rdata
Size: 64KB - Virtual size: 63KB

.data
Size: 7KB - Virtual size: 84KB

. 1D
Size: 4.2MB - Virtual size: 4.2MB

._oB
Size: 1KB - Virtual size: 1KB

./lM
Size: 3.2MB - Virtual size: 3.2MB

.reloc
Size: 24KB - Virtual size: 24KB

.rsrc
Size: 350KB - Virtual size: 349KB