vidar | 1bb0d91de807006c381c2552a64f0e02c9b856332cea226e48c86099c8bd953c | Triage

Submit
Reports

Overview

overview

Static

static

3

1702f6936d...18.exe

windows7-x64

1702f6936d...18.exe

windows10-2004-x64

Sharing

General

Target

1702f6936db859d43d1afe6a02d2379b_JaffaCakes118
Size

649KB
Sample

241005-ks4lyszhld
MD5

1702f6936db859d43d1afe6a02d2379b
SHA1

95e2c44699c52017f6fa8852770a902e5ea8c302
SHA256

1bb0d91de807006c381c2552a64f0e02c9b856332cea226e48c86099c8bd953c
SHA512

15c049de654a24c4c26fd6bb156858e6489f05d7a163c1151285c64cfc34d83fa68b41b5ad14a617d1eb4750e6437eabb5cc930092c9870a36d54d9450f2cf21
SSDEEP

12288:Ib9BK7Qpc+13ntyP96yrfIwD/I8LDZObXRymS0gyw68pmuD8akYHN:sXmQpFJyEv0ZOb8mHF8zkYHN

Score

10^/10

vidar 916 discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

1702f6936db859d43d1afe6a02d2379b_JaffaCakes118.exe

Resource

win7-20240708-en

vidar 916 discovery stealer

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

1702f6936db859d43d1afe6a02d2379b_JaffaCakes118.exe

Resource

win10v2004-20240802-en

vidar 916 discovery stealer

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

40

Botnet

916

C2

https://lenak513.tumblr.com/

Attributes

profile_id
916

Targets

- Target
  
  1702f6936db859d43d1afe6a02d2379b_JaffaCakes118
- Size
  
  649KB
- MD5
  
  1702f6936db859d43d1afe6a02d2379b
- SHA1
  
  95e2c44699c52017f6fa8852770a902e5ea8c302
- SHA256
  
  1bb0d91de807006c381c2552a64f0e02c9b856332cea226e48c86099c8bd953c
- SHA512
  
  15c049de654a24c4c26fd6bb156858e6489f05d7a163c1151285c64cfc34d83fa68b41b5ad14a617d1eb4750e6437eabb5cc930092c9870a36d54d9450f2cf21
- SSDEEP
  
  12288:Ib9BK7Qpc+13ntyP96yrfIwD/I8LDZObXRymS0gyw68pmuD8akYHN:sXmQpFJyEv0ZOb8mHF8zkYHN
Score

10^/10

vidar 916 discovery stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar Stealer
  stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

vidar916discoverystealer

behavioral2

vidar916discoverystealer

© 2018-2025

Terms | Privacy