vidar

General

Target

!!@pASSCode_1233_$etup_.rar
Size

20.9MB
Sample

240923-e8jzlawdle
MD5

25459514f3c4339dcfcea2bb20ecfa85
SHA1

96a1b322d8c3fb6eb6ca90c361fbd8a94f4f00bb
SHA256

bcb04dd0b21bb1bea097a7b8d8f95429c657ce8db622a5c5d3b82f157ab6c6a0
SHA512

73d3c0248e523ef21d59b52adb3a37ddbe6cbef50e847ddc02ea245f7f843ac1c5e39e6a4c55055d0330eaf5571ffdc3d0dfc564a458c84f7c18ab5f9b57083a
SSDEEP

393216:CnHO06LHnMzJLEbyf2e6Zq9zgqY3qESQ66VdL533mwl/kxqHfOW7:CnupHnMzYyf2JYY31St6l31/ko/T

Score

10^/10

Malware Config

Extracted

Family

vidar

Version

8.3

Botnet

a5215640c3d06b049aee58cc78e4057d

C2

https://78.47.78.87

https://steamcommunity.com/profiles/76561199651834633

https://t.me/raf6ik

Attributes

profile_id_v2
a5215640c3d06b049aee58cc78e4057d
user_agent
Mozilla/5.0 (Windows NT 10.0; rv:109.0) Gecko/20100101 Firefox/115.0

Targets

- Target
  
  Setup.exe
- Size
  
  202KB
- MD5
  
  64179e64675e822559cac6652298bdfc
- SHA1
  
  cceed3b2441146762512918af7bf7f89fb055583
- SHA256
  
  c26db97858c427d92e393396f7cb7f9e7ed8f9ce616adcc123d0ec6b055b99c9
- SHA512
  
  ef740b35ea5190f8ee47776af1f15ebdd54d39c84da5665e64f67ae6dd0f4b181e955e9a35319a5d0bd764972562e8f2bc44dbdf83c3bedf05674eae902e7280
- SSDEEP
  
  3072:EMtKztOp6KfOQqoY3ltdNjlcwsSdplkrxf+Uyecgw:ELKfOQLY3l9jlcwnlUf+z7gw
Score

10^/10

vidar a5215640c3d06b049aee58cc78e4057d discovery stealer
- Detect Vidar Stealer
  stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Detect Vidar Stealer

Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2