Overview

overview

10

Static

static

1c20cb8ec1...94.exe

windows7-x64

10

1c20cb8ec1...94.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    1c20cb8ec19ac81d79e43c10e2790d94.exe

  • Size

    287KB

  • Sample

    221219-ld7kqshg3y

  • MD5

    1c20cb8ec19ac81d79e43c10e2790d94

  • SHA1

    60345d628328e9ff49b1fa6756abe89d4c13047c

  • SHA256

    46ee09b05b493a451c0f786a1adc615771aafb299ad8e4dcd5c0a08bf5a8d838

  • SHA512

    31ce8a3874be454d5650339a470d0adb64adc7bfe7c9577ac05e6ffeb5fe479ca3f5db8ca8e58f331cf1c448a7d05b883662dc96ece5f5063367b8a480377d2c

  • SSDEEP

    6144:E4G7LP2h/xTCb1x4nTm/Gf6GZlakWpJ0Ve8djcbXF:E4G7biYMCfGGX08yYbXF

Score
10/10
rhadamanthysstealer

Malware Config

Targets

    • Target

      1c20cb8ec19ac81d79e43c10e2790d94.exe

    • Size

      287KB

    • MD5

      1c20cb8ec19ac81d79e43c10e2790d94

    • SHA1

      60345d628328e9ff49b1fa6756abe89d4c13047c

    • SHA256

      46ee09b05b493a451c0f786a1adc615771aafb299ad8e4dcd5c0a08bf5a8d838

    • SHA512

      31ce8a3874be454d5650339a470d0adb64adc7bfe7c9577ac05e6ffeb5fe479ca3f5db8ca8e58f331cf1c448a7d05b883662dc96ece5f5063367b8a480377d2c

    • SSDEEP

      6144:E4G7LP2h/xTCb1x4nTm/Gf6GZlakWpJ0Ve8djcbXF:E4G7biYMCfGGX08yYbXF

    Score
    10/10
    rhadamanthysstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks