vidar | 58063ad47e3c7eb89807cb68acb9da9408422eb9905d76267126ba6a1a29c204 | Triage

Sharing

General

Target

58063ad47e3c7eb89807cb68acb9da9408422eb9905d76267126ba6a1a29c204N
Size

341KB
Sample

241010-tbkl7ayfmr
MD5

9525853524541fcec3f653a7b92cf180
SHA1

82e35cbf5890b20ea50aa438bc7314bf7c7bffae
SHA256

58063ad47e3c7eb89807cb68acb9da9408422eb9905d76267126ba6a1a29c204
SHA512

45685355172371c4f12082a3206f88170e04902bc21c92539b3c48cc9dceba9e98f03da0613640f1d1cd3609dd3aa09e178af86db57361a7182578594c5b6ade
SSDEEP

6144:YMqEHUkNqGVHhR5pW+JzUQQVgIvEwIdpevREKhr2AisXl:YMqEH+GVJNzULgekdpepEE7l

Score

10^/10

vidar 8a317397aaef2adca4fbd91afb9328e7 discovery

Malware Config

Extracted

Family

vidar

Version

3.9

Botnet

8a317397aaef2adca4fbd91afb9328e7

C2

https://steamcommunity.com/profiles/76561199263069598

https://t.me/cybehost

Attributes

profile_id_v2
8a317397aaef2adca4fbd91afb9328e7
user_agent
Mozilla/5.0 (compatible; Konqueror/3.5; Linux) KHTML/3.5.7 (like Gecko) (Debian)

Targets

- Target
  
  58063ad47e3c7eb89807cb68acb9da9408422eb9905d76267126ba6a1a29c204N
- Size
  
  341KB
- MD5
  
  9525853524541fcec3f653a7b92cf180
- SHA1
  
  82e35cbf5890b20ea50aa438bc7314bf7c7bffae
- SHA256
  
  58063ad47e3c7eb89807cb68acb9da9408422eb9905d76267126ba6a1a29c204
- SHA512
  
  45685355172371c4f12082a3206f88170e04902bc21c92539b3c48cc9dceba9e98f03da0613640f1d1cd3609dd3aa09e178af86db57361a7182578594c5b6ade
- SSDEEP
  
  6144:YMqEHUkNqGVHhR5pW+JzUQQVgIvEwIdpevREKhr2AisXl:YMqEH+GVJNzULgekdpepEE7l
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

8a317397aaef2adca4fbd91afb9328e7vidar

behavioral1

behavioral2