General
-
Target
27706523ec1d9d7ae41a6bb14add2e4fa3be511d59d112b44a52a648e1a00222.exe
-
Size
379KB
-
MD5
429930b168be0cc5983e427095612c4a
-
SHA1
32af1c09f8e5a04276a554aa6ea4ff4f9f8caec5
-
SHA256
27706523ec1d9d7ae41a6bb14add2e4fa3be511d59d112b44a52a648e1a00222
-
SHA512
525ddb7d3d57c62b683d8e061f2840300d0c54aa960c3216402e2ca42586c9ba1fe2e305a5edb80074c8024c4eb3fd139d8b00ecc2348eaddc29e2f427b1f1d5
-
SSDEEP
6144:N4QLzLWAw/5muUno6mlS4EgTvtu9AbA1V8neRBaHY/rEB+PvmR1vPzilWZKCN1JB:N4QyAy0gTvt2V8neCY/u+PvmR1vPzilS
Score
10/10
Malware Config
Extracted
Family
vidar
Botnet
fc0stn
C2
https://t.me/w0ctzn
https://steamcommunity.com/profiles/76561199817305251
Attributes
-
user_agent
Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:131.0) Gecko/20100101 Firefox/131.0
Signatures
-
Vidar family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
27706523ec1d9d7ae41a6bb14add2e4fa3be511d59d112b44a52a648e1a00222.exe
Headers
Sections