vidar | 7b1da985023a29588a74f3053f206c8d82f661f301b6eac20df64727469d8f47 | Triage

Sharing

General

Target

JaffaCakes118_7b1da985023a29588a74f3053f206c8d82f661f301b6eac20df64727469d8f47
Size

2.1MB
Sample

241229-ppewms1qfk
MD5

694bef28fdd3eb283de8e887ba55df02
SHA1

77134dd03edf81926ca1b2cae64074e3fc9445bf
SHA256

7b1da985023a29588a74f3053f206c8d82f661f301b6eac20df64727469d8f47
SHA512

69dc87e37fe24a8322483ca1dda2f3d19687577ce2505ce437c3e110f88c411a7e21523b01c63f1078a92d84886d37ffb9b27218bb42cb18562ff0614b7f2c93
SSDEEP

49152:OennOtYZaFrcSfSxU1D1DiXL++4UaqlqNB:lTItDZiXL1Llk

Score

10^/10

vidar discovery stealer

Malware Config

Extracted

Family

vidar

C2

https://Y_#8K.4qt2<8mLH1L83GQAJ8KFQ0SHY1

https://FQ0SHY1X48

Targets

- Target
  
  JaffaCakes118_7b1da985023a29588a74f3053f206c8d82f661f301b6eac20df64727469d8f47
- Size
  
  2.1MB
- MD5
  
  694bef28fdd3eb283de8e887ba55df02
- SHA1
  
  77134dd03edf81926ca1b2cae64074e3fc9445bf
- SHA256
  
  7b1da985023a29588a74f3053f206c8d82f661f301b6eac20df64727469d8f47
- SHA512
  
  69dc87e37fe24a8322483ca1dda2f3d19687577ce2505ce437c3e110f88c411a7e21523b01c63f1078a92d84886d37ffb9b27218bb42cb18562ff0614b7f2c93
- SSDEEP
  
  49152:OennOtYZaFrcSfSxU1D1DiXL++4UaqlqNB:lTItDZiXL1Llk
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2