vidar | 7e6b7466a36513adab05461f704358a300532fe22566390db2b11e2e002ea76e | Triage

Submit
Reports

Overview

overview

Static

static

3

995d6d0616...18.exe

windows7-x64

995d6d0616...18.exe

windows10-2004-x64

Sharing

General

Target

995d6d0616a01ce21c29cf8a59a8ee61_JaffaCakes118
Size

657KB
Sample

241125-fnrdlswkbp
MD5

995d6d0616a01ce21c29cf8a59a8ee61
SHA1

7645d0bd4c82bce058951e77cb5112e3b12c19db
SHA256

7e6b7466a36513adab05461f704358a300532fe22566390db2b11e2e002ea76e
SHA512

18e6c8e435b7ff2e4a41e9c8118761e1582f0ab6efb2225d8c1bcce78cec95a4f1f0ae7b5ccaeb35047fa8f72d2910112cba0f49f7760d106fc89bad51b8c55a
SSDEEP

12288:mAb0H9AMChkaRmGI6MbQ9fWZd/V/H2y/npv+u1dvb5VOYEurciDRz9V:SdAMChbRmlhZpVL/n1tVOFO

Score

10^/10

vidar 916 discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

995d6d0616a01ce21c29cf8a59a8ee61_JaffaCakes118.exe

Resource

win7-20241010-en

vidar 916 discovery stealer

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

995d6d0616a01ce21c29cf8a59a8ee61_JaffaCakes118.exe

Resource

win10v2004-20241007-en

vidar 916 discovery stealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

40

Botnet

916

C2

https://lenak513.tumblr.com/

Attributes

profile_id
916

Targets

- Target
  
  995d6d0616a01ce21c29cf8a59a8ee61_JaffaCakes118
- Size
  
  657KB
- MD5
  
  995d6d0616a01ce21c29cf8a59a8ee61
- SHA1
  
  7645d0bd4c82bce058951e77cb5112e3b12c19db
- SHA256
  
  7e6b7466a36513adab05461f704358a300532fe22566390db2b11e2e002ea76e
- SHA512
  
  18e6c8e435b7ff2e4a41e9c8118761e1582f0ab6efb2225d8c1bcce78cec95a4f1f0ae7b5ccaeb35047fa8f72d2910112cba0f49f7760d106fc89bad51b8c55a
- SSDEEP
  
  12288:mAb0H9AMChkaRmGI6MbQ9fWZd/V/H2y/npv+u1dvb5VOYEurciDRz9V:SdAMChbRmlhZpVL/n1tVOFO
Score

10^/10

vidar 916 discovery stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar family
  vidar
- Vidar Stealer
  stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

vidar916discoverystealer

behavioral2

vidar916discoverystealer

© 2018-2024

Terms | Privacy