vidar | hxxps://gist[.]github[.]com/imcenlupaad256/de3c6845267fc224505a21be986ebb76 | Triage

Submit
Reports

Overview

overview

Static

static

1

URLScan

urlscan

https://gist.github....

windows11-21h2-x64

Sharing

General

Target

https://gist.github.com/imcenlupaad256/de3c6845267fc224505a21be986ebb76
Sample

241006-mk8xtatdng

Score

10^/10

vidar 962abdb0b49579401d25d63a1f697be6 discovery stealer

Static task

static1

URLScan task

urlscan1

Behavioral task

behavioral1

Sample

https://gist.github.com/imcenlupaad256/de3c6845267fc224505a21be986ebb76

Resource

win11-20240802-en

vidar 962abdb0b49579401d25d63a1f697be6 discovery stealer

windows11-21h2-x64

23 signatures

1800 seconds

Malware Config

Extracted

Family

vidar

Version

11

Botnet

962abdb0b49579401d25d63a1f697be6

C2

https://steamcommunity.com/profiles/76561199780418869

https://t.me/ae5ed

Attributes

user_agent
Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:130.0) Gecko/20100101 Firefox/130.0

Targets

- Target
  
  https://gist.github.com/imcenlupaad256/de3c6845267fc224505a21be986ebb76
Score

10^/10

vidar 962abdb0b49579401d25d63a1f697be6 discovery stealer
- Detect Vidar Stealer
  stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

urlscan1

behavioral1

vidar962abdb0b49579401d25d63a1f697be6discoverystealer

© 2018-2025

Terms | Privacy