vidar | 76106d902328efa1e4a8c815e57a130f763a0a1ed5bfd1ba5707874c3ddaa84c | Triage

Sharing

General

Target

uykb.exe
Size

272KB
Sample

250201-y6p8dayncz
MD5

37797bbf221a8b210a987c3822ee35fc
SHA1

eaa09aee812bd2466c0b750f9edc7e66088c38e2
SHA256

76106d902328efa1e4a8c815e57a130f763a0a1ed5bfd1ba5707874c3ddaa84c
SHA512

9378befe69eb34494bf2b431147d2cd97bbcd8cc3dd173a097aa0e6facca00314d1f6d843c9a5b09866ec37c13c602833447c4fe52bbbec545d1b9ef544e440b
SSDEEP

3072:ne/3hGz8Su8ucwsy7vf7Qy63S9scCh4slxWsr7i9O3WWsZHpV0iukwEEfzqygF/S:n6xqucZy7vf8f3oMRxb/3W1Hp91Gq

Score

10^/10

vidar discovery stealer

Malware Config

Extracted

Family

vidar

C2

https://t.me/m08mbk

https://steamcommunity.com/profiles/76561199820567237

Attributes

user_agent
Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:136.0) Gecko/20100101 Firefox/136.0

Targets

- Target
  
  uykb.exe
- Size
  
  272KB
- MD5
  
  37797bbf221a8b210a987c3822ee35fc
- SHA1
  
  eaa09aee812bd2466c0b750f9edc7e66088c38e2
- SHA256
  
  76106d902328efa1e4a8c815e57a130f763a0a1ed5bfd1ba5707874c3ddaa84c
- SHA512
  
  9378befe69eb34494bf2b431147d2cd97bbcd8cc3dd173a097aa0e6facca00314d1f6d843c9a5b09866ec37c13c602833447c4fe52bbbec545d1b9ef544e440b
- SSDEEP
  
  3072:ne/3hGz8Su8ucwsy7vf7Qy63S9scCh4slxWsr7i9O3WWsZHpV0iukwEEfzqygF/S:n6xqucZy7vf8f3oMRxb/3W1Hp91Gq
Score

10^/10

vidar discovery stealer
- Vidar
  Vidar is an infostealer based on Arkei stealer.
  stealer vidar
- Vidar family
  vidar
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

vidardiscoverystealer

behavioral2

vidardiscoverystealer