Overview

overview

10

Static

static

1

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8c30faffe3659055364cd5d00c7d69c00ef87665b1512bbed4e9560f37323b13

  • Size

    432KB

  • Sample

    230322-kd5kpsfg47

  • MD5

    97690dedc425ac0971a904ff67b1f3ab

  • SHA1

    3589e089a3619c8cc877dccdbf1b67bdba35f03f

  • SHA256

    8c30faffe3659055364cd5d00c7d69c00ef87665b1512bbed4e9560f37323b13

  • SHA512

    57b2e95e8c984c2c633193d428125eee61187cec2c4195db1e2781e669b1ab0a5cd1fe7420ccd9126a496be05bd71761137658fc0526e0a539bf097b0dd406e9

  • SSDEEP

    3072:VgINlmgb/oejua67qcJ83AjF1M46Q6r/3iUusVM1GmLNnGGiPwG+YIWmSKzOoE1O:+Y1SRjfSrphOsvI7RsG8TL/

Score
10/10
rhadamanthyscollectionstealer

Malware Config

Targets

    • Target

      8c30faffe3659055364cd5d00c7d69c00ef87665b1512bbed4e9560f37323b13

    • Size

      432KB

    • MD5

      97690dedc425ac0971a904ff67b1f3ab

    • SHA1

      3589e089a3619c8cc877dccdbf1b67bdba35f03f

    • SHA256

      8c30faffe3659055364cd5d00c7d69c00ef87665b1512bbed4e9560f37323b13

    • SHA512

      57b2e95e8c984c2c633193d428125eee61187cec2c4195db1e2781e669b1ab0a5cd1fe7420ccd9126a496be05bd71761137658fc0526e0a539bf097b0dd406e9

    • SSDEEP

      3072:VgINlmgb/oejua67qcJ83AjF1M46Q6r/3iUusVM1GmLNnGGiPwG+YIWmSKzOoE1O:+Y1SRjfSrphOsvI7RsG8TL/

    Score
    10/10
    rhadamanthyscollectionstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Accesses Microsoft Outlook profiles

      collection

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks