← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
ThreatFox Hunt: Vidar IOCs - 2026-01-25
WHITE pduggusa 2026-01-25 Modified: 2026-02-24
18
IOCs
MEDIUM VOLUME
Automated ThreatFox hunt for Vidar indicators. 25 IOCs collected via Pattern 49 intelligence streaming. MITRE ATT&CK: T1555.003, T1539, T1005, T1041. Reference: https://analytics.dugganusa.com
vidarthreatfoxautomated-huntpattern-49dugganusastealercredential-theft
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
Vidar
Indicators of Compromise (18)
All URL hostname FileHash-SHA256 FileHash-MD5
TYPEINDICATORDESCRIPTIONCREATED
URL https://steamcommunity.com/profiles/76561198745091601 Vidar botnet_cc - ThreatFox ID: 1736194 2026-01-25
URL https://telegram.me/n1ds03 Vidar botnet_cc - ThreatFox ID: 1736195 2026-01-25
URL https://cbb.borendrokontho.com/ Vidar botnet_cc - ThreatFox ID: 1736196 2026-01-25
URL https://cbb.lidiia.com.ua/ Vidar botnet_cc - ThreatFox ID: 1736197 2026-01-25
hostname cbb.borendrokontho.com Vidar botnet_cc - ThreatFox ID: 1736198 2026-01-25
hostname cbb.lidiia.com.ua Vidar botnet_cc - ThreatFox ID: 1736199 2026-01-25
FileHash-SHA256 179491983dccbc70ff193275063377b1908fd5b375bbe1bacae8972fd71a4279 Vidar payload - ThreatFox ID: 1736559 2026-01-25
FileHash-MD5 13354d5663065abc12bae7f3e8d19a36 Vidar payload - ThreatFox ID: 1736560 2026-01-25
FileHash-SHA256 52b851579d8ad7d416e63b275739a20103fea7fdaff0a51e363a417fc8f88820 Vidar payload - ThreatFox ID: 1736568 2026-01-25
FileHash-MD5 d4eba24211012a7080a983e630cb5d18 Vidar payload - ThreatFox ID: 1736569 2026-01-25
FileHash-SHA256 8990f1f819501cac425a640eee2f499036797d4116c74fd61bcb47c420f11528 Vidar payload - ThreatFox ID: 1736598 2026-01-25
FileHash-MD5 9822dbd464bb63cab0633e133c821d58 Vidar payload - ThreatFox ID: 1736599 2026-01-25
FileHash-SHA256 c1526793cabe3a7b1c67a15c8a9f647a13b17858fd226765730148bf4731ce04 Vidar payload - ThreatFox ID: 1736601 2026-01-25
FileHash-MD5 71b1f1f12ef0b7593c1405b602c57f60 Vidar payload - ThreatFox ID: 1736602 2026-01-25
FileHash-SHA256 0d39bedb355db41014782eae1ccb7780e981343f0ff1d867fdd23d34ebb5c5d8 Vidar payload - ThreatFox ID: 1736663 2026-01-25
FileHash-MD5 0fd8140976ccedd428f206b87821461f Vidar payload - ThreatFox ID: 1736664 2026-01-25
FileHash-SHA256 5dc12f0cdbdd1488c42f1f383872a78cb95712473ec8dc1e98492fa90a8ac1a2 Vidar payload - ThreatFox ID: 1736675 2026-01-25
FileHash-MD5 ddd255908aa228b897aa33979678b8c0 Vidar payload - ThreatFox ID: 1736676 2026-01-25
References (2)
↗ https://analytics.dugganusa.com/api/v1/stix-feed/v2 ↗ https://threatfox.abuse.ch