lgoogloader | d25cffb2218f3a928e86fa11cfc0934da096abdeaf2fbaa53eb3313ecdd89ee2 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004-x64

Sharing

General

Target

d25cffb2218f3a928e86fa11cfc0934da096abdeaf2fbaa53eb3313ecdd89ee2
Size

1.7MB
Sample

230120-wgkkgsba5z
MD5

3db927e91aa47ba30e91c0aa6bc9cd31
SHA1

cad0e1f5ee6ddc8b4e0e785d034bcb793d03ac8a
SHA256

d25cffb2218f3a928e86fa11cfc0934da096abdeaf2fbaa53eb3313ecdd89ee2
SHA512

066d6783d29a435acd9cf81fa868b56376621fe45064a192799a809eb177eeacb0f39e126e6747d772b3125fb26db0d9f2e673655c928380d3d1ce55b2198e98
SSDEEP

49152:rRycJuiThl8k6xTU/gP0vSI2ok4tWIg3OM/:1ycJuiThl8k6x+gMvj2v4QIyOO

Score

10^/10

lgoogloader rhadamanthys downloader stealer

Static task

static1

Behavioral task

behavioral1

Sample

d25cffb2218f3a928e86fa11cfc0934da096abdeaf2fbaa53eb3313ecdd89ee2.exe

Resource

win10v2004-20221111-en

lgoogloader rhadamanthys downloader stealer

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  d25cffb2218f3a928e86fa11cfc0934da096abdeaf2fbaa53eb3313ecdd89ee2
- Size
  
  1.7MB
- MD5
  
  3db927e91aa47ba30e91c0aa6bc9cd31
- SHA1
  
  cad0e1f5ee6ddc8b4e0e785d034bcb793d03ac8a
- SHA256
  
  d25cffb2218f3a928e86fa11cfc0934da096abdeaf2fbaa53eb3313ecdd89ee2
- SHA512
  
  066d6783d29a435acd9cf81fa868b56376621fe45064a192799a809eb177eeacb0f39e126e6747d772b3125fb26db0d9f2e673655c928380d3d1ce55b2198e98
- SSDEEP
  
  49152:rRycJuiThl8k6xTU/gP0vSI2ok4tWIg3OM/:1ycJuiThl8k6x+gMvj2v4QIyOO
Score

10^/10

lgoogloader rhadamanthys downloader stealer
- Detect rhadamanthys stealer shellcode
- Detects LgoogLoader payload
- LgoogLoader
  A downloader capable of dropping and executing other malware families.
  downloader lgoogloader
- Rhadamanthys
  Rhadamanthys is an info stealer written in C++ first seen in August 2022.
  stealer rhadamanthys
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Loads dropped DLL
- Suspicious use of NtSetInformationThreadHideFromDebugger
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

lgoogloaderrhadamanthysdownloaderstealer

© 2018-2024

Terms | Privacy