Overview

overview

10

Static

static

dridex

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    18e763314dabc12d227ab593ecbcb9d40907671474e6bcc21d679a0a1ac5120a

  • Size

    286KB

  • Sample

    221220-re1rgahg86

  • MD5

    264d008c2efeae0a5076556f0e189661

  • SHA1

    bcabb5d7a0117a949f4bf04118faf0d9d9efd194

  • SHA256

    18e763314dabc12d227ab593ecbcb9d40907671474e6bcc21d679a0a1ac5120a

  • SHA512

    4da033d7878f90fbed76553753d49b5a0a008d61404d29dbe4cb6af9b133085dbe9d5bfa6c45938cef9586daca6f59e83d15a6107b31db3f975d815da3c6b5ad

  • SSDEEP

    3072:PdLJl7R7sbnTAlEO3kJ5AyxQwr2B9EcuEsReCc0oXV26mLMXr7b/TSMNHCDml:1LJETAlOJ5AyX2B9EzReCc0oF2uLvCa

Score
10/10
rhadamanthysstealer

Malware Config

Targets

    • Target

      18e763314dabc12d227ab593ecbcb9d40907671474e6bcc21d679a0a1ac5120a

    • Size

      286KB

    • MD5

      264d008c2efeae0a5076556f0e189661

    • SHA1

      bcabb5d7a0117a949f4bf04118faf0d9d9efd194

    • SHA256

      18e763314dabc12d227ab593ecbcb9d40907671474e6bcc21d679a0a1ac5120a

    • SHA512

      4da033d7878f90fbed76553753d49b5a0a008d61404d29dbe4cb6af9b133085dbe9d5bfa6c45938cef9586daca6f59e83d15a6107b31db3f975d815da3c6b5ad

    • SSDEEP

      3072:PdLJl7R7sbnTAlEO3kJ5AyxQwr2B9EcuEsReCc0oXV26mLMXr7b/TSMNHCDml:1LJETAlOJ5AyX2B9EzReCc0oF2uLvCa

    Score
    10/10
    rhadamanthysstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1

MITRE ATT&CK Matrix

Tasks