TLP:WHITE4 IOCs

Vidar Infostealer Malware Returns with new TTPS – Detection & Response

Security Investigation

Published February 24, 2023Original Report

Diamond Model

Adversary(1)

Infrastructure(3)

Capability(1)

Victim

Initial AccessTA0001·T1566

1/8

Phishing

ActionDeliver malware via phishing

Malware is distributed through spam emails or malicious websites, often disguised as free software downloads.

Analysis unavailable

Type	Indicator	Confidence	Score	First Seen
IP	176.113.115.17 c2intel-blogmalware	High	64	Jun 2, 26
IP	149.154.167.99 intel-blogmalwarenetwork	High	58	Jun 2, 26
IP	78.46.254.12 intel-blogmalwarenetwork	High	58	Jun 2, 26
SHA256	a311b8137f8f47beb0c1cd3a79b97015b7d6a96074c165699ef1e2207d074556 exploitfile-hashintel-blog	Medium	53	Jun 2, 26

IOC Relationship Graph4 total IOCs

IPSHA256

scroll to zoom · drag to pan · click IOC to open