vidar | c879554f5e8525925ca6c4d39ced634b0c4bf3487270e660963b76afb47df82c | Triage

Sharing

General

Target

c879554f5e8525925ca6c4d39ced634b0c4bf3487270e660963b76afb47df82cN.exe
Size

367KB
Sample

240926-ax997awhjj
MD5

797ce18f5a9eb080394af8797204cba0
SHA1

836acc509d7319936d3cc1df89a4d18e5a373d4b
SHA256

c879554f5e8525925ca6c4d39ced634b0c4bf3487270e660963b76afb47df82c
SHA512

0aab9a2f2944f991c0fa4283ed45ff653ff68f6f28537f3bc7c606f9306ed16ad62a9365e175d9454131b5164143b678d39b5e10dc46256714e56400c11eb9c6
SSDEEP

6144:sbbD2RXh9KD7EvVkr0evEcZ7/CUqjfgQlVumrlbVRXLWchXfo0cW:sbuRX6D7ENiKUqDgYumrDRXLWoN

Score

10^/10

vidar 62c7e0e16911dde063d31dd694c41dd7 discovery

Malware Config

Extracted

Family

vidar

Version

3.6

Botnet

62c7e0e16911dde063d31dd694c41dd7

C2

https://steamcommunity.com/profiles/76561199499188534

https://t.me/nutalse

Attributes

profile_id_v2
62c7e0e16911dde063d31dd694c41dd7
user_agent
Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.0.0 Safari/537.36

Targets

- Target
  
  c879554f5e8525925ca6c4d39ced634b0c4bf3487270e660963b76afb47df82cN.exe
- Size
  
  367KB
- MD5
  
  797ce18f5a9eb080394af8797204cba0
- SHA1
  
  836acc509d7319936d3cc1df89a4d18e5a373d4b
- SHA256
  
  c879554f5e8525925ca6c4d39ced634b0c4bf3487270e660963b76afb47df82c
- SHA512
  
  0aab9a2f2944f991c0fa4283ed45ff653ff68f6f28537f3bc7c606f9306ed16ad62a9365e175d9454131b5164143b678d39b5e10dc46256714e56400c11eb9c6
- SSDEEP
  
  6144:sbbD2RXh9KD7EvVkr0evEcZ7/CUqjfgQlVumrlbVRXLWchXfo0cW:sbuRX6D7ENiKUqDgYumrDRXLWoN
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

62c7e0e16911dde063d31dd694c41dd7vidar

behavioral1

behavioral2