Using this site

Please ensure you understand and agree with our data protection policy before using this site. Review Policy

UnparkCpu.exe Stealer Vidar Analysis

Stealer Vidar
Updated on 2024-02-09 (1 month ago)
Checked by Online Virus Scanner
Online Virus Checkerv.1.0.158.174
DB Version:2024-02-09 01:00:26

Spy.Win32.Vidar.tr

Vidar is a highly dangerous malware that specializes in stealing both personal information and cryptocurrency from infected users. Named after the ancient Scandinavian god of Vengeance, Vidar lives up to its name by silently infiltrating systems, logging keystrokes, and extracting valuable data. It also targets cryptocurrency wallets and can drain victims' digital assets, making it a dire threat to online privacy and financial security.

FileUnparkCpu.exe
Checked2024-02-09 00:01:50
MD5254fe03a202beb7d68bc322f200a480c
SHA18b7b41baa2f7fa830b52a4f70641d6f933018c7a
SHA2568fce32ef6687aeb691c1a9427cfbf11fd6e9c0407bb8dcbab1f839d88077172e
SHA512e69df4072539a443fef25bd4a061ff832e905b30789acd683b982f0c98636830af29ed84f2e11c0f074ea7bc7b2854adb9cb2f8d9fdd8c4496c5f952ab39ebdf
Imphashf34d5f2d4577ed6d9ceec516c1f5a744
File Size897728 bytes

Spy.Win32.Vidar.tr Removal

Spy.Win32.Vidar.tr Removal

Gridinsoft has the capability to identify and eliminate Spy.Win32.Vidar.tr without requiring further user intervention.

  • Start by downloading Gridinsoft Anti-Malware to your computer.
  • Double-click on the gsam-en-install.exe file and follow the on-screen instructions to install the program.
  • Once the installation of Gridinsoft Anti-Malware is complete, the program will open on the Scan screen.
  • Click on the "Standard Scan" button.
  • After the scanning process is finished, click on "Clean Now" to remove any detected threats.
  • If prompted, restart your system to complete the removal process.

Portable Executable Info

754e03aafd89765ab74fdd27fd42a614
509fa98767d24b2f90372ba1ba857547
e0ccb2f0babaf0e0
Image Base:0x00400000
Entry Point:0x0049ebcf
Compilation:2019-10-18 14:08:35
Checksum:0x000e63e2 (Actual: 0x000e63e2)
OS Version:4.0
PEiD:PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
Sign:OK
Sections:3
Imports: mscoree,
Exports: 0
Resources:12

Sections

Name Virtual Address Virtual Size Raw Size MD5 Entropy
.text 0x00002000 0x0009cbd5 0x0009cc00 3480c0cc1c35f7d8d122ecf05290c33f 6.53
.rsrc 0x000a0000 0x0003bf5c 0x0003c000 4a985eb7017bb773d020a60a52f46376 6.49
.reloc 0x000dc000 0x0000000c 0x00000200 e16a0ecb246761d6bb399c76eb43a946 0.10

Leave a comment*

Share your thoughts or insights about this file. Do you align with our conclusion?

*Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Please Wait...

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Learn more Download Now
Gridinsoft Anti-Malware