Extracted

• • Target

    Unlock_Tool_2.4.1.rar

  • Size

    53.6MB

  • MD5

    2b6f6b54f320a7322f04426a99085966

  • SHA1

    b014af8aaa98fa422265de9fa4522cbdef12641f

  • SHA256

    28bf5e3b9fb5485c3e98fcf3a98ed61884bbf9419fddad53855ce08284d6b97c

  • SHA512

    4645fa85b041e77a1318e7b4aea73281f85586ca3280a3bb77cca47999f0c786ee178a406c1f74d5e12562a3548ce442ff345ea73204e9c010474ff610dd784e

  • SSDEEP

    1572864:aMlvVJdOWRPdH2N0injqfW6Z8MkK1kP4qq7nGcuz6:rlNJdJHc7n+f98MP1NJ46

  Score

  10^/10

  vidarcredential_accessdiscoverystealer

  • Detect Vidar Stealer

    stealer

  • Vidar

    Vidar is an infostealer based on Arkei stealer.

    stealervidar

  • Vidar family

    vidar

  • Downloads MZ/PE file

  • Uses browser remote debugging

    Can be used control the browser and steal sensitive information such as credentials and session cookies.

    credential_accessstealer

  • Executes dropped EXE

  • Loads dropped DLL

  • Suspicious use of SetThreadContext

  behavioral1behavioral2