rhadamanthys | d402fe08be245b546c3b6388fa8a29eb8735349686d6b5aaf06c39734090adfb | Triage

Submit
Reports

Overview

overview

Static

static

1

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

d402fe08be245b546c3b6388fa8a29eb8735349686d6b5aaf06c39734090adfb
Size

354KB
Sample

230319-bgvegaec86
MD5

cfc3328ac884f2ce20eeaae93c11adb5
SHA1

d317a1037299f3284f7ee53a062f15d0f4b00dc5
SHA256

d402fe08be245b546c3b6388fa8a29eb8735349686d6b5aaf06c39734090adfb
SHA512

b597ee229ea215bf537768039d67ea88c9f793ac110ab6cd5ef9d8d8f0a77c78679e00436ddb93eccd016c9dce966a0b5a7f8d1b50b17852cdc505fd5eb4f1f4
SSDEEP

6144:xuXLG0dHYT2l1oP2RJESWOeOJBmsnRyA5TDZ83ZGi5dDYKE:xuXD6SLRJElOeOJBmsgADZ8wi4KE

Score

10^/10

rhadamanthys stealer

Static task

static1

Behavioral task

behavioral1

Sample

d402fe08be245b546c3b6388fa8a29eb8735349686d6b5aaf06c39734090adfb.exe

Resource

win10v2004-20230220-en

rhadamanthys stealer

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  d402fe08be245b546c3b6388fa8a29eb8735349686d6b5aaf06c39734090adfb
- Size
  
  354KB
- MD5
  
  cfc3328ac884f2ce20eeaae93c11adb5
- SHA1
  
  d317a1037299f3284f7ee53a062f15d0f4b00dc5
- SHA256
  
  d402fe08be245b546c3b6388fa8a29eb8735349686d6b5aaf06c39734090adfb
- SHA512
  
  b597ee229ea215bf537768039d67ea88c9f793ac110ab6cd5ef9d8d8f0a77c78679e00436ddb93eccd016c9dce966a0b5a7f8d1b50b17852cdc505fd5eb4f1f4
- SSDEEP
  
  6144:xuXLG0dHYT2l1oP2RJESWOeOJBmsnRyA5TDZ83ZGi5dDYKE:xuXD6SLRJElOeOJBmsgADZ8wi4KE
Score

10^/10

rhadamanthys stealer
- Detect rhadamanthys stealer shellcode
- Rhadamanthys
  Rhadamanthys is an info stealer written in C++ first seen in August 2022.
  stealer rhadamanthys
- Suspicious use of NtSetInformationThreadHideFromDebugger
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

rhadamanthysstealer

© 2018-2025

Terms | Privacy