71b6668d22dbc1d64e7fe64cfdea934df012b31ed2221c1e4c6ac2fd9c1a986c | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

71b6668d22dbc1d64e7fe64cfdea934df012b31ed2221c1e4c6ac2fd9c1a986c.exe

Resource

win10-20220901-en

rhadamanthys stealer

windows10-1703-x64

6 signatures

150 seconds

General

Target

71b6668d22dbc1d64e7fe64cfdea934df012b31ed2221c1e4c6ac2fd9c1a986c
Size

5.0MB
MD5

03f50c7edd7811e4d010870019ab02e4
SHA1

85f28bbe5aae9f0ed73c3f1a0b9b9a5890232439
SHA256

71b6668d22dbc1d64e7fe64cfdea934df012b31ed2221c1e4c6ac2fd9c1a986c
SHA512

6c7ded733000a2192f99ff3796dec030557ac62d8c3e5a0ac2d2b2d97aeae11f9b1e04a0829a6ea3d0f4b9c58c14f7bc9547ac38507cc19aff6d58abefb8ce38
SSDEEP

98304:E4MI0G+gJnXE7UPnfmpdi51qI+LXGN1GKVtkMFlhvwvIDQeUZVtYYbM:PMi++0wPnfmpdO1H+XKEMVJkeE

Score

N/A

Malware Config

Signatures

Files

71b6668d22dbc1d64e7fe64cfdea934df012b31ed2221c1e4c6ac2fd9c1a986c
.exe windows x86

51ebb3e5684d1e1d0860210d15fcb59e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

GetForegroundWindow
CharUpperBuffW

Sections

.text
Size: - Virtual size: 215KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qdata0
Size: - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.qdata1
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qdata2
Size: 5.0MB - Virtual size: 5.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy