vidar | a5483d1124967a58176f75409270ba071fe0f2f337ffd3b106659852565502f0 | Triage

Submit
Reports

Overview

overview

Static

static

3

a945644533...18.exe

windows7-x64

a945644533...18.exe

windows10-2004-x64

Sharing

General

Target

a945644533a405a16423fbf5b9a37069_JaffaCakes118
Size

544KB
Sample

241127-xzq1naspcn
MD5

a945644533a405a16423fbf5b9a37069
SHA1

30b820799eb4e5e5421ef14cd3f2a87f8288fe46
SHA256

a5483d1124967a58176f75409270ba071fe0f2f337ffd3b106659852565502f0
SHA512

40f82c67d52b1b960d1097cdbc6801d2f5ba3dd20ac62d8dd3055aaf55392744c9e4a4b595fb62d37f69ca7a833158e2c15e36e1c3a53e3576a4a6326ead18ed
SSDEEP

12288:V2VRggveXe6UvZRLGkWVx30BwQTvwAW8aLlcCO1Xnmi:V2VygmZYZRL8xiwQzW8TXmi

Score

10^/10

vidar 916 discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a945644533a405a16423fbf5b9a37069_JaffaCakes118.exe

Resource

win7-20241010-en

vidar 916 discovery stealer

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

a945644533a405a16423fbf5b9a37069_JaffaCakes118.exe

Resource

win10v2004-20241007-en

vidar 916 discovery stealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

40

Botnet

916

C2

https://lenak513.tumblr.com/

Attributes

profile_id
916

Targets

- Target
  
  a945644533a405a16423fbf5b9a37069_JaffaCakes118
- Size
  
  544KB
- MD5
  
  a945644533a405a16423fbf5b9a37069
- SHA1
  
  30b820799eb4e5e5421ef14cd3f2a87f8288fe46
- SHA256
  
  a5483d1124967a58176f75409270ba071fe0f2f337ffd3b106659852565502f0
- SHA512
  
  40f82c67d52b1b960d1097cdbc6801d2f5ba3dd20ac62d8dd3055aaf55392744c9e4a4b595fb62d37f69ca7a833158e2c15e36e1c3a53e3576a4a6326ead18ed
- SSDEEP
  
  12288:V2VRggveXe6UvZRLGkWVx30BwQTvwAW8aLlcCO1Xnmi:V2VygmZYZRL8xiwQzW8TXmi
Score

10^/10

vidar 916 discovery stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar family
  vidar
- Vidar Stealer
  stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

vidar916discoverystealer

behavioral2

vidar916discoverystealer

© 2018-2024

Terms | Privacy