General

  • Target

    9f532c8749bc71b3fc723d42f86300ae5a583515817da2aad40c858f163d01f8

  • Size

    366KB

  • Sample

    220805-kqe6ksabdp

  • MD5

    eb84aeef20ea974bf207dd6df8446567

  • SHA1

    624a1e8510a1d7f3ff05693c30d724f19aaf5a1a

  • SHA256

    9f532c8749bc71b3fc723d42f86300ae5a583515817da2aad40c858f163d01f8

  • SHA512

    b2cf0b9aaacfc8e2fd6c517c0e49ff977b44097904cdf84a7d2a8324fc9525d0937442bf433e9a442e46914caf529b3e37d86097a36a761291e13c100aa30d3a

Score
10/10

Malware Config

Extracted

Family

vidar

Version

53.3

Botnet

1474

C2

https://t.me/korstonsales

https://climatejustice.social/@ffoleg94

Attributes
  • profile_id

    1474

Targets

    • Target

      9f532c8749bc71b3fc723d42f86300ae5a583515817da2aad40c858f163d01f8

    • Size

      366KB

    • MD5

      eb84aeef20ea974bf207dd6df8446567

    • SHA1

      624a1e8510a1d7f3ff05693c30d724f19aaf5a1a

    • SHA256

      9f532c8749bc71b3fc723d42f86300ae5a583515817da2aad40c858f163d01f8

    • SHA512

      b2cf0b9aaacfc8e2fd6c517c0e49ff977b44097904cdf84a7d2a8324fc9525d0937442bf433e9a442e46914caf529b3e37d86097a36a761291e13c100aa30d3a

    Score
    10/10
    • Vidar

      Vidar is an infostealer based on Arkei stealer.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks