Overview

overview

10

Static

static

1

ccb79f8904...6d.exe

windows7-x64

10

ccb79f8904...6d.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ccb79f890454ecca985c303de399ee6d.exe

  • Size

    264KB

  • Sample

    230312-1kw5xahe8y

  • MD5

    ccb79f890454ecca985c303de399ee6d

  • SHA1

    75ae53f445dff2f3987efeb2efa71ac6a6e32ec0

  • SHA256

    60b346fe162b2fc00328d09a35696cfe21f22925716d15fe9841f5fb9bc629ab

  • SHA512

    381453d243b0c69d1a9928ca83f174cadd360145375f7d8c17fba9d3dc6b83f3f057a3839422c79426debcf0aab80bdcba2a9b3b1bc5f99a8039bbabe1029d23

  • SSDEEP

    3072:yQot1zGUSFj9bDeFy3i5AVWyaIwezaI7JolHbG+ViD6OkjI6pcETWIDX6Jmv/:xi1CUS5IDAVzaINWeGHy+sDCjrpcA

Score
10/10
rhadamanthyscollectionstealer

Malware Config

Targets

    • Target

      ccb79f890454ecca985c303de399ee6d.exe

    • Size

      264KB

    • MD5

      ccb79f890454ecca985c303de399ee6d

    • SHA1

      75ae53f445dff2f3987efeb2efa71ac6a6e32ec0

    • SHA256

      60b346fe162b2fc00328d09a35696cfe21f22925716d15fe9841f5fb9bc629ab

    • SHA512

      381453d243b0c69d1a9928ca83f174cadd360145375f7d8c17fba9d3dc6b83f3f057a3839422c79426debcf0aab80bdcba2a9b3b1bc5f99a8039bbabe1029d23

    • SSDEEP

      3072:yQot1zGUSFj9bDeFy3i5AVWyaIwezaI7JolHbG+ViD6OkjI6pcETWIDX6Jmv/:xi1CUS5IDAVzaINWeGHy+sDCjrpcA

    Score
    10/10
    rhadamanthyscollectionstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Accesses Microsoft Outlook profiles

      collection

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks