vidar | 3c20093f8163cf989cbfef56059d60cb4fab4c771ed8e975ffee437cb688937c | Triage

Submit
Reports

Overview

overview

Static

static

3

PALWORLD T...er.exe

windows10-2004-x64

Sharing

General

Target

PALWORLD_TRAINER.zip
Size

3.5MB
Sample

241004-3h127asdrl
MD5

17d071d3cdf44df592d90c9aca72dc1d
SHA1

e3e5b84a1b992b88b00889a69181c1ccc39a950f
SHA256

3c20093f8163cf989cbfef56059d60cb4fab4c771ed8e975ffee437cb688937c
SHA512

b5429c73ba1f9cf10059820125958a731db085afac4c2359f33cb907f324203ce9279df5ad45e0b65c3e2e27dffe21f4fa059224a3201994fc31c7b09fe0d83e
SSDEEP

49152:Oia/gEYbgT33fjn1y7aC6K65YG/izhFOqzF0Ul8cY7Z1+bIMnyeJIyRtPfGw/ukJ:taXYbgjjn1yGBv5lgWN1+bIWRtPr/B

Score

10^/10

vidar e8a390631b867d183ac7447da853207e discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

PALWORLD TRAINER/spoofer.exe

Resource

win10v2004-20240802-en

vidar e8a390631b867d183ac7447da853207e discovery stealer

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

8.3

Botnet

e8a390631b867d183ac7447da853207e

C2

https://steamcommunity.com/profiles/76561199651834633

https://t.me/raf6ik

Attributes

profile_id_v2
e8a390631b867d183ac7447da853207e
user_agent
Mozilla/5.0 (Windows NT 10.0; rv:109.0) Gecko/20100101 Firefox/115.0

Targets

- Target
  
  PALWORLD TRAINER/spoofer.exe
- Size
  
  446KB
- MD5
  
  d2961b6726f53f641bf2c377ed228042
- SHA1
  
  e5cb89dcd1f5e442bab8b02547ab63b5d1b6f99c
- SHA256
  
  7fa220b9534f751f7ec40805e2b41a30307b42aef86577b2368bc4e7af3f7e0f
- SHA512
  
  cf8cfa7782971c4557d8386947a9e321aab490601971d8be867f4acf31d758e94a75cc935e272d2afc490ded6c57b5d42ec295a260395b18ffbe64704b94ac1e
- SSDEEP
  
  6144:JMQvO+XbL8upVFAUH9DhM3GCWxJwHuaovV73/ItQdZPy3URVyIWMYQ:RvOmbLvWUH9zCyV73QudZqURVyIlY
Score

10^/10

vidar e8a390631b867d183ac7447da853207e discovery stealer
- Detect Vidar Stealer
  stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

vidare8a390631b867d183ac7447da853207ediscoverystealer

© 2018-2025

Terms | Privacy