Overview

overview

10

Static

static

1

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6e6023fad7cc6b5165412d9e50286e8d5b93a2eba69d822c04fa82e8b2c83885

  • Size

    344KB

  • Sample

    230309-h6tmssaa31

  • MD5

    225dca0f469e1dc892f55a6d4257e10f

  • SHA1

    cef77108a5a14222738044245a98f8bf884d07d9

  • SHA256

    6e6023fad7cc6b5165412d9e50286e8d5b93a2eba69d822c04fa82e8b2c83885

  • SHA512

    1fb0377fc7e3f4ca58527d2ffc408d4f1f57f45e7c55d7108faa34fd9777314320d69f08dc5a5773183a3d8189df96354870da5d9b7d4a2e53c387c52072a91e

  • SSDEEP

    3072:53imWL6ymOo9S0EYIWv9d6xnC/e/pXL27ChQCjDYV9ew996WDvvK9kiXQmsp1+Hc:UmWL6go3tvqxnCWl2+TsZ9/vckigrF

Score
10/10
rhadamanthyscollectionstealer

Malware Config

Targets

    • Target

      6e6023fad7cc6b5165412d9e50286e8d5b93a2eba69d822c04fa82e8b2c83885

    • Size

      344KB

    • MD5

      225dca0f469e1dc892f55a6d4257e10f

    • SHA1

      cef77108a5a14222738044245a98f8bf884d07d9

    • SHA256

      6e6023fad7cc6b5165412d9e50286e8d5b93a2eba69d822c04fa82e8b2c83885

    • SHA512

      1fb0377fc7e3f4ca58527d2ffc408d4f1f57f45e7c55d7108faa34fd9777314320d69f08dc5a5773183a3d8189df96354870da5d9b7d4a2e53c387c52072a91e

    • SSDEEP

      3072:53imWL6ymOo9S0EYIWv9d6xnC/e/pXL27ChQCjDYV9ew996WDvvK9kiXQmsp1+Hc:UmWL6go3tvqxnCWl2+TsZ9/vckigrF

    Score
    10/10
    rhadamanthyscollectionstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Accesses Microsoft Outlook profiles

      collection

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks