rhadamanthys | ce8377abe16baf1f7fba0fdadcd3b7f715a1adf65c18ef71f90972b7e6d97fba | Triage

Submit
Reports

Overview

overview

Static

static

1

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

ce8377abe16baf1f7fba0fdadcd3b7f715a1adf65c18ef71f90972b7e6d97fba
Size

1.8MB
Sample

230319-ntj6gsac3y
MD5

a725a96c64bd1cf97b38ba4372ab3c19
SHA1

ee058d108316a55151aaab4722104c38de6b1e31
SHA256

ce8377abe16baf1f7fba0fdadcd3b7f715a1adf65c18ef71f90972b7e6d97fba
SHA512

70a3b11b674380e9b167d6041fd55f66e01d5cb83cac779dbb4ee218a43fe23a66eea6363d407983ae8490279ea7bb6390998efd8b6c09ea7c8a29ed49d7f1bc
SSDEEP

24576:UMl7JT3YKNKtu1Dze6HDpLRldGYgqUrOvyA4B9JWfpvLKeeJdbDH+150wgxsNY2r:l3YaGrqUCMH+8Az

Score

10^/10

rhadamanthys stealer

Static task

static1

Behavioral task

behavioral1

Sample

ce8377abe16baf1f7fba0fdadcd3b7f715a1adf65c18ef71f90972b7e6d97fba.exe

Resource

win10v2004-20230220-en

rhadamanthys stealer

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  ce8377abe16baf1f7fba0fdadcd3b7f715a1adf65c18ef71f90972b7e6d97fba
- Size
  
  1.8MB
- MD5
  
  a725a96c64bd1cf97b38ba4372ab3c19
- SHA1
  
  ee058d108316a55151aaab4722104c38de6b1e31
- SHA256
  
  ce8377abe16baf1f7fba0fdadcd3b7f715a1adf65c18ef71f90972b7e6d97fba
- SHA512
  
  70a3b11b674380e9b167d6041fd55f66e01d5cb83cac779dbb4ee218a43fe23a66eea6363d407983ae8490279ea7bb6390998efd8b6c09ea7c8a29ed49d7f1bc
- SSDEEP
  
  24576:UMl7JT3YKNKtu1Dze6HDpLRldGYgqUrOvyA4B9JWfpvLKeeJdbDH+150wgxsNY2r:l3YaGrqUCMH+8Az
Score

10^/10

rhadamanthys stealer
- Detect rhadamanthys stealer shellcode
- Rhadamanthys
  Rhadamanthys is an info stealer written in C++ first seen in August 2022.
  stealer rhadamanthys
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Suspicious use of NtSetInformationThreadHideFromDebugger
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

rhadamanthysstealer

© 2018-2025

Terms | Privacy