Tracking Vidar Infrastructure with Censys [Friday, November 24, 2023]

Tracking Vidar Infrastructure with Censys [Friday, November 24, 2023]
https://www.securitricks.com/content/images/size/w600/format/webp/2023/12/ATTACK-REPORT-LOGO-2.png
Report

Tracking Vidar Infrastructure with Censys

Description :
Following Censys' research, we look at some of the more advanced malware trojans that are used to steal data from infected computers and other systems, including 2FA Software and the Tor Browser.

Published :
2023-11-24T11:01:45.850Z

Created :
2023-11-24T11:01:45.850Z

Modified :
2023-11-24T11:29:30.237Z

Tags

  • vidar

Indicators

IPv4s :
  • 89.38.135.11
  • 116.202.189.41
  • 173.251.201.195
  • 23.88.45.254
  • 5.75.246.163
  • 195.201.34.151
  • 49.12.116.189
  • 5.75.209.4
  • 157.90.152.131
  • 189.116.12.49
  • 78.47.61.97
  • 142.132.204.231
  • 65.108.152.136
  • 95.217.244.44
  • 168.119.173.77
  • 94.130.188.233
  • 151.34.201.195
  • 116.203.10.96
  • 195.201.251.173
  • 49.12.119.148
  • 195.201.46.42
  • 116.203.6.243
  • 131.152.90.157
  • 49.13.94.153
  • 116.203.7.211
  • 167.235.143.166
URLs :
  • www.avisclair.com
Domains :
  • join.naxtm.cfd
Attacks Pattern :
  • T1528
  • T1539
External References :

You can download the txt file containing the indicators by clicking on the button below:

About the author
Julien B.

Securitricks

Up-to-Date Cybersecurity Insights & Malware Reports

Securitricks

Great! Youโ€™ve successfully signed up.

Welcome back! You've successfully signed in.

You've successfully subscribed to Securitricks.

Success! Check your email for magic link to sign-in.

Success! Your billing info has been updated.

Your billing was not updated.