Overview

overview

10

Static

static

1

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bb296f38555e9b2e12566c516d4ce52b05fc21f5c6e8c96042abdccea6821d20

  • Size

    389KB

  • Sample

    230313-y5fybabh83

  • MD5

    78f7518cf825b394515f0f3d38f85d9f

  • SHA1

    a1fbec583e7a16e97f1501e60c25f8d6c5d9ee29

  • SHA256

    bb296f38555e9b2e12566c516d4ce52b05fc21f5c6e8c96042abdccea6821d20

  • SHA512

    22d407b64cb92a421c1c176a75a542d7d26376b8f864d2009268b975a9ea4a99596913aa9a73854aadda39449361ec586a304b36176da23889b40d7ff2c02d00

  • SSDEEP

    6144:zZL+Thcy6ZXQU+xCiY8oS2t0hlc9whdpW4fS8inf/YmADyIC:zZkhcWU+GUc9whdY4fS9ndI

Score
10/10
rhadamanthyscollectionstealer

Malware Config

Targets

    • Target

      bb296f38555e9b2e12566c516d4ce52b05fc21f5c6e8c96042abdccea6821d20

    • Size

      389KB

    • MD5

      78f7518cf825b394515f0f3d38f85d9f

    • SHA1

      a1fbec583e7a16e97f1501e60c25f8d6c5d9ee29

    • SHA256

      bb296f38555e9b2e12566c516d4ce52b05fc21f5c6e8c96042abdccea6821d20

    • SHA512

      22d407b64cb92a421c1c176a75a542d7d26376b8f864d2009268b975a9ea4a99596913aa9a73854aadda39449361ec586a304b36176da23889b40d7ff2c02d00

    • SSDEEP

      6144:zZL+Thcy6ZXQU+xCiY8oS2t0hlc9whdpW4fS8inf/YmADyIC:zZkhcWU+GUc9whdY4fS9ndI

    Score
    10/10
    rhadamanthyscollectionstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Accesses Microsoft Outlook profiles

      collection

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks