Overview

overview

10

Static

static

1

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8d8e3672382c82fcf6f7d44e102f29d19fb66d3d4e6235b91073dcc5212ab257

  • Size

    357KB

  • Sample

    230318-laytesbg73

  • MD5

    5a62c142760a0ba2242c93002dd9cdd8

  • SHA1

    2b8850048c77388a71e07cfea8c1e5c208fcfe81

  • SHA256

    8d8e3672382c82fcf6f7d44e102f29d19fb66d3d4e6235b91073dcc5212ab257

  • SHA512

    0abf05004c24f7190ed23713abb553e0ddb1035122a1ff6153c2efc0781a2f4fe3ea91c0c66fa278f27229557dfdc1b805035512f70231b2805fddda72ba0368

  • SSDEEP

    6144:nJMFLOu1294tlmzO1eB6qykCZ7FadI0tRXRtS/7PgjVaS:nJIF1a4t061QA5Z7AdIIxqbXS

Score
10/10
rhadamanthysstealer

Malware Config

Targets

    • Target

      8d8e3672382c82fcf6f7d44e102f29d19fb66d3d4e6235b91073dcc5212ab257

    • Size

      357KB

    • MD5

      5a62c142760a0ba2242c93002dd9cdd8

    • SHA1

      2b8850048c77388a71e07cfea8c1e5c208fcfe81

    • SHA256

      8d8e3672382c82fcf6f7d44e102f29d19fb66d3d4e6235b91073dcc5212ab257

    • SHA512

      0abf05004c24f7190ed23713abb553e0ddb1035122a1ff6153c2efc0781a2f4fe3ea91c0c66fa278f27229557dfdc1b805035512f70231b2805fddda72ba0368

    • SSDEEP

      6144:nJMFLOu1294tlmzO1eB6qykCZ7FadI0tRXRtS/7PgjVaS:nJIF1a4t061QA5Z7AdIIxqbXS

    Score
    10/10
    rhadamanthysstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1

MITRE ATT&CK Matrix

Tasks