Overview

overview

10

Static

static

1

23a34d5cd1...03.exe

windows7-x64

10

23a34d5cd1...03.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    2665574e54a70ab457d570ed4c2605a2.bin

  • Size

    230KB

  • Sample

    230319-v59zlsbe5s

  • MD5

    00b8ac99a1dc4ffc22ac18009cc920f0

  • SHA1

    059b1b514df5f72386a7a9cc7f9a4c7c7a9d0480

  • SHA256

    154100466cd20b3768c323d8f6ea67bcc3c2a14b529b132fda3b52c08bc9a3d9

  • SHA512

    22f80a94f8f5179bc8713537df0c28ec2608eabb21f3e85f95ad487259aade9fdf884714f403baccb18ebe34704e2a73ece97c1611c57260a91342bd1ee720d5

  • SSDEEP

    6144:dVa4Wse6REcQEfQwkcTHq0ghKm7XLTqvIllubih6:3msePB3wcaEXPqvgfI

Score
10/10
rhadamanthysstealer

Malware Config

Targets

    • Target

      23a34d5cd145e663015d364f485b8ee77aca233982ec4f7023f617b4ecf1cb03.exe

    • Size

      359KB

    • MD5

      2665574e54a70ab457d570ed4c2605a2

    • SHA1

      28efd8059b52bcf198c1ca2cbe9539a332b6c88f

    • SHA256

      23a34d5cd145e663015d364f485b8ee77aca233982ec4f7023f617b4ecf1cb03

    • SHA512

      c0c6877a34cab6118646ae4a2556fe55678bf80c0f36fa441cdbffaf96b7d3a2ac5a8f878fa2bf3bb034ff4ff8bb19513c1922910528b8459cc90c4c9e9f99d6

    • SSDEEP

      6144:lpJ7Lo3bC9wVRuaWi7uS/ywC0P1zw/J3Z0vwkHu8dtd9u:nJ7Gb+wVRuoyE63Z0vw0tnu

    Score
    10/10
    rhadamanthysstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks