vidar | 8092bbb69c4fac487ec5356e69a2b5adf9983e4521f1c465a3355aa9b9de37c9 | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...c9.exe

windows7-x64

3

JaffaCakes...c9.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_8092bbb69c4fac487ec5356e69a2b5adf9983e4521f1c465a3355aa9b9de37c9
Size

1.1MB
Sample

241229-k4pbeaxrdv
MD5

983f11c521c358462945941c58beeb34
SHA1

e65a4cf2c73cc766e4ea9fffd4682547a4b88b1b
SHA256

8092bbb69c4fac487ec5356e69a2b5adf9983e4521f1c465a3355aa9b9de37c9
SHA512

6946c2102b33e0bcc8f136f4341786985ba3ab2f3dfd82989014f503d3d56cfba3c30922721217398485b880ca4adfbe19813c776a74d2ccba30c29dce0facbd
SSDEEP

12288:5YWmdEdjwyBiIPl/dEah1iIvlU2n2P28j0aIeRl+/yrtGBN8de6NtxU+mxgw:5sKEyo69dh1iIvye8IDok6YC/dJw

Score

10^/10

vidar 1171 discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_8092bbb69c4fac487ec5356e69a2b5adf9983e4521f1c465a3355aa9b9de37c9.exe

Resource

win7-20240903-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_8092bbb69c4fac487ec5356e69a2b5adf9983e4521f1c465a3355aa9b9de37c9.exe

Resource

win10v2004-20241007-en

vidar 1171 discovery stealer

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Extracted

Family

vidar

Version

51.5

Botnet

1171

C2

https://t.me/hi20220403

https://mastodon.social/@sam5al

Attributes

profile_id
1171

Targets

- Target
  
  JaffaCakes118_8092bbb69c4fac487ec5356e69a2b5adf9983e4521f1c465a3355aa9b9de37c9
- Size
  
  1.1MB
- MD5
  
  983f11c521c358462945941c58beeb34
- SHA1
  
  e65a4cf2c73cc766e4ea9fffd4682547a4b88b1b
- SHA256
  
  8092bbb69c4fac487ec5356e69a2b5adf9983e4521f1c465a3355aa9b9de37c9
- SHA512
  
  6946c2102b33e0bcc8f136f4341786985ba3ab2f3dfd82989014f503d3d56cfba3c30922721217398485b880ca4adfbe19813c776a74d2ccba30c29dce0facbd
- SSDEEP
  
  12288:5YWmdEdjwyBiIPl/dEah1iIvlU2n2P28j0aIeRl+/yrtGBN8de6NtxU+mxgw:5sKEyo69dh1iIvye8IDok6YC/dJw
Score

10^/10

discovery vidar 1171 stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar family
  vidar
- Vidar Stealer
  stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

vidar1171discoverystealer

© 2018-2025

Terms | Privacy