vidar | da1430adcfc60f0ba6c3916b066fd3eec155c2d58667c173d4905e005ae9b40d | Triage

Sharing

General

Target

Setup_Pswd_1234.rar
Size

26.3MB
Sample

240923-f43ftaxbja
MD5

cc0f8250c459fa17cb0c62d17ca0b16e
SHA1

a63442b4c7a21009206cf0f175935853b2ad3250
SHA256

da1430adcfc60f0ba6c3916b066fd3eec155c2d58667c173d4905e005ae9b40d
SHA512

31f7e896fdceea6271c06b1f5869d71d3ac9e5c492c1a7d50df12c0bc5864ec8deda999c36fff21d9b9c7bd039e4684591a734567ac1402bef7b71a382289540
SSDEEP

393216:r6hYhDrHCMUvcO/mCFwmDSQsndRjr+fo3BeaAnAIg8cpolWClYtx0N9OUR12w6uz:r+Yh2UgHFwjdVSmBMnXXCa18w4Y

Score

10^/10

vidar 5e9aa6efe02ef7be95c93d26d4d759c6 discovery pdf stealer

Malware Config

Extracted

Family

vidar

Version

7.4

Botnet

5e9aa6efe02ef7be95c93d26d4d759c6

C2

https://t.me/lve24v

https://steamcommunity.com/profiles/76561199612212584

Attributes

profile_id_v2
5e9aa6efe02ef7be95c93d26d4d759c6
user_agent
Mozilla/5.0 (X11; Kubuntu; Linux x86_64; rv:121.0) Gecko/20100101 Firefox/121.0

Targets

- Target
  
  Setup.exe
- Size
  
  782.1MB
- MD5
  
  944c5dcfee6a31997bc071714acc16ac
- SHA1
  
  95ecd1cc21dbcd4c53bc8d343de77141a8537464
- SHA256
  
  021d312bfced31460133b3273160724c206be47ca14d77e5501e74745bc98b5e
- SHA512
  
  9c46fd3e45d987882d945411681ec41593246a896e19b78b0e4e087c5baa6bc9e3f3a3f897c6d2262aa408d38db09f67b50513fc5f5f49d22baae3e693fdd56b
- SSDEEP
  
  98304:Xup40mo66VtJQoAr/uHBHqCUDBMbl+qEg23ojfeyr4KTZJcBcBcBcBcBcBcBcBcB:w40mz6VhAr/aUDBMB5EDA5rbY
Score

10^/10

vidar 5e9aa6efe02ef7be95c93d26d4d759c6 discovery stealer
- Detect Vidar Stealer
  stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

vidar5e9aa6efe02ef7be95c93d26d4d759c6discoverystealer