vidar | 56ab17b3b38ef7edc85bb29eb0dc7f2e3cdfa01f36643b6e5f5f80532a75baad | Triage

Submit
Reports

Overview

overview

Static

static

3

56ab17b3b3...ad.exe

windows7-x64

56ab17b3b3...ad.exe

windows10-2004-x64

Sharing

General

Target

56ab17b3b38ef7edc85bb29eb0dc7f2e3cdfa01f36643b6e5f5f80532a75baad.exe
Size

1.4MB
Sample

241118-bql5fszkel
MD5

117d1f1ebb967009a74000cf6be1127b
SHA1

37b3cea9c5166058751a784f45bcdc55dadea533
SHA256

56ab17b3b38ef7edc85bb29eb0dc7f2e3cdfa01f36643b6e5f5f80532a75baad
SHA512

105b4c1170b09c5f134637c0c1cd476635247aff62b9df30915d839075a5b5b981707356854e8b9adea20695077000e0a14a562f6bbd2928dd84aecbb2610af8
SSDEEP

24576:AF3iok5nCcAT5Aw/pkPpbUAEQQi+HrFZ390w28KSaVBXecD4fvPVlFegzHLYwFvc:AFSouMByUswrXKFSxBI0W9

Score

10^/10

vidar 869 discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

56ab17b3b38ef7edc85bb29eb0dc7f2e3cdfa01f36643b6e5f5f80532a75baad.exe

Resource

win7-20240903-en

vidar 869 discovery stealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

56ab17b3b38ef7edc85bb29eb0dc7f2e3cdfa01f36643b6e5f5f80532a75baad.exe

Resource

win10v2004-20241007-en

vidar 869 discovery stealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

48.4

Botnet

869

C2

https://koyu.space/@qmashton

Attributes

profile_id
869

Targets

- Target
  
  56ab17b3b38ef7edc85bb29eb0dc7f2e3cdfa01f36643b6e5f5f80532a75baad.exe
- Size
  
  1.4MB
- MD5
  
  117d1f1ebb967009a74000cf6be1127b
- SHA1
  
  37b3cea9c5166058751a784f45bcdc55dadea533
- SHA256
  
  56ab17b3b38ef7edc85bb29eb0dc7f2e3cdfa01f36643b6e5f5f80532a75baad
- SHA512
  
  105b4c1170b09c5f134637c0c1cd476635247aff62b9df30915d839075a5b5b981707356854e8b9adea20695077000e0a14a562f6bbd2928dd84aecbb2610af8
- SSDEEP
  
  24576:AF3iok5nCcAT5Aw/pkPpbUAEQQi+HrFZ390w28KSaVBXecD4fvPVlFegzHLYwFvc:AFSouMByUswrXKFSxBI0W9
Score

10^/10

vidar 869 discovery stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar family
  vidar
- Vidar Stealer
  stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

vidar869discoverystealer

behavioral2

vidar869discoverystealer

© 2018-2024

Terms | Privacy