Concrete signature match: Trojan - Appears legitimate but performs malicious actions for 64-bit Windows platform, family VidarStealer
This detection identifies Trojan:Win64/VidarStealer.RH!MTB, a highly malicious information-stealing Trojan. It is designed to exfiltrate sensitive data such as browser credentials, cryptocurrency wallet information, and system details from the infected Win64 system, confirmed through concrete machine learning behavioral analysis.
No detailed analysis available from definition files.
68aa05a7b1b326f6fafac38621260c95d36807a8cc6ed96634739d86f99b0acdee08d090dd8e344c7745201232b1020dd7e2873896b2fc32374c3bd75d887a4dImmediately isolate the infected system. Perform a full system scan with updated antivirus software to remove the threat. Urgently change all potentially compromised credentials, especially for browsers, email, and cryptocurrency wallets. Consider a full system reformat and reinstall for critical systems to ensure complete eradication.