Concrete signature match: Trojan - Appears legitimate but performs malicious actions for 64-bit Windows platform, family Vidar
Trojan:Win64/Vidar.AHE!MTB is a concrete detection of the Vidar information-stealing malware, identified through machine learning behavioral analysis. This threat is designed to exfiltrate sensitive data such as browser credentials, cryptocurrency wallets, and banking information from a compromised Windows system. Its presence indicates a high risk of data theft and potential further compromise.
No detailed analysis available from definition files.
418981b56ea65370fbf7b7473a75929b5ba6b1910efe5562fd362c43676a67678f16da672b72afa99e534d022b945bdc8a4ea1083d09ba7930df2dd163eb3bb8Immediately isolate the affected system from all networks. Perform a full system scan with updated antivirus definitions and remove all detected threats. Urgently change all credentials for accounts previously accessed from the compromised machine, especially for financial, email, and critical business services. Due to the nature of info-stealers, a complete system reimage is strongly recommended to ensure thorough eradication and data integrity.