vidar | 5121a59b2b26e34094b016429ef97e4e29077671b0670f0092e23e7c57b19982 | Triage

Sharing

General

Target

2024-10-18_45cb65ab764f05f26990edfe62e39169_cobalt-strike_mafia
Size

574KB
Sample

241018-l55kfs1cmb
MD5

45cb65ab764f05f26990edfe62e39169
SHA1

fee5ed137b340a6ebd693177a190b50f5936c6bb
SHA256

5121a59b2b26e34094b016429ef97e4e29077671b0670f0092e23e7c57b19982
SHA512

d1e9e8daf1652118b88ed30a70bd869fd335082b99aafab096a8d8053ad48d326f1dbdd1318393a96867b993d0d46e52769d904e26b3b14d4844edca9f24f8d6
SSDEEP

12288:qrMlFbctnITNE2i3KghRiAqqUEGq60dKdxL0VYExdZaZM4S:qAbcqE2i3KghRiAqqUEGq6AKdx5OG

Score

10^/10

vidar c0c7c802c4ec94ab4c7fcd88c588698c discovery stealer

Malware Config

Extracted

Family

vidar

Botnet

c0c7c802c4ec94ab4c7fcd88c588698c

Targets

- Target
  
  2024-10-18_45cb65ab764f05f26990edfe62e39169_cobalt-strike_mafia
- Size
  
  574KB
- MD5
  
  45cb65ab764f05f26990edfe62e39169
- SHA1
  
  fee5ed137b340a6ebd693177a190b50f5936c6bb
- SHA256
  
  5121a59b2b26e34094b016429ef97e4e29077671b0670f0092e23e7c57b19982
- SHA512
  
  d1e9e8daf1652118b88ed30a70bd869fd335082b99aafab096a8d8053ad48d326f1dbdd1318393a96867b993d0d46e52769d904e26b3b14d4844edca9f24f8d6
- SSDEEP
  
  12288:qrMlFbctnITNE2i3KghRiAqqUEGq60dKdxL0VYExdZaZM4S:qAbcqE2i3KghRiAqqUEGq6AKdx5OG
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

stealerc0c7c802c4ec94ab4c7fcd88c588698cvidar

behavioral1

behavioral2