Overview

overview

10

Static

static

1

dridex

windows10-1703-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0b64fab746bd552983b27341edf514a7c8f64a6b329f5a9521c80f620c0332dd

  • Size

    320KB

  • Sample

    230323-g8jpyaga2z

  • MD5

    f600ff0122bd6d543526430af5ca7b59

  • SHA1

    b01549dc8ca2b494e58231343ebea37e3336fe59

  • SHA256

    0b64fab746bd552983b27341edf514a7c8f64a6b329f5a9521c80f620c0332dd

  • SHA512

    7ac8a9416468f5492bf9152f830a9fc7bd9c7966286f5047a7a7a69d66c7d6ca1311ed9e0bb6aa9b00fd127c8f4699ae16431eb165bc50088d02e0ab271a6629

  • SSDEEP

    3072:44UAyOsplfYgTbNEHEZaVUF0KybyWKOS3eA1UMTNShFv7+7HnTliqgTo63S6dpwn:3MlbHNDD0KyKOS/CFv8HTlpOS6L9

Score
10/10
rhadamanthyscollectionstealer

Malware Config

Targets

    • Target

      0b64fab746bd552983b27341edf514a7c8f64a6b329f5a9521c80f620c0332dd

    • Size

      320KB

    • MD5

      f600ff0122bd6d543526430af5ca7b59

    • SHA1

      b01549dc8ca2b494e58231343ebea37e3336fe59

    • SHA256

      0b64fab746bd552983b27341edf514a7c8f64a6b329f5a9521c80f620c0332dd

    • SHA512

      7ac8a9416468f5492bf9152f830a9fc7bd9c7966286f5047a7a7a69d66c7d6ca1311ed9e0bb6aa9b00fd127c8f4699ae16431eb165bc50088d02e0ab271a6629

    • SSDEEP

      3072:44UAyOsplfYgTbNEHEZaVUF0KybyWKOS3eA1UMTNShFv7+7HnTliqgTo63S6dpwn:3MlbHNDD0KyKOS/CFv8HTlpOS6L9

    Score
    10/10
    rhadamanthyscollectionstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Accesses Microsoft Outlook profiles

      collection

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks