rhadamanthys | 081583defb13cbc3248a7ed7f500d368a6d798120f2db7673806ac40dae52e00 | Triage

Submit
Reports

Overview

overview

Static

static

1

dridex

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

081583defb13cbc3248a7ed7f500d368a6d798120f2db7673806ac40dae52e00
Size

36KB
Sample

230331-cnkdhsgc88
MD5

8dee912640f56d3bd766067650525fa3
SHA1

3bad5cde9efa6e10fbdf91dde95e43f38ee1b55c
SHA256

081583defb13cbc3248a7ed7f500d368a6d798120f2db7673806ac40dae52e00
SHA512

3a8afd14fe13610fb0f86d6e7d01554912bc2b6f210410c31b57a6257948afb87a30736485ed927016926ac087a9ecb9ab4de151a7cdb5b69d5599e840a5ea13
SSDEEP

768:GePP55vvFlC6mmMMmmwV0Ol3UqLLllLLZA4ZGdcjWA28Z2NLPNaVWl1SVV7W9ebp:pPP55vvFlC6mmMMmmwztLLllLLZUY2N8

Score

10^/10

rhadamanthys collection stealer

Static task

static1

Behavioral task

behavioral1

Sample

081583defb13cbc3248a7ed7f500d368a6d798120f2db7673806ac40dae52e00.exe

Resource

win10v2004-20230220-en

rhadamanthys collection stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  081583defb13cbc3248a7ed7f500d368a6d798120f2db7673806ac40dae52e00
- Size
  
  36KB
- MD5
  
  8dee912640f56d3bd766067650525fa3
- SHA1
  
  3bad5cde9efa6e10fbdf91dde95e43f38ee1b55c
- SHA256
  
  081583defb13cbc3248a7ed7f500d368a6d798120f2db7673806ac40dae52e00
- SHA512
  
  3a8afd14fe13610fb0f86d6e7d01554912bc2b6f210410c31b57a6257948afb87a30736485ed927016926ac087a9ecb9ab4de151a7cdb5b69d5599e840a5ea13
- SSDEEP
  
  768:GePP55vvFlC6mmMMmmwV0Ol3UqLLllLLZA4ZGdcjWA28Z2NLPNaVWl1SVV7W9ebp:pPP55vvFlC6mmMMmmwztLLllLLZUY2N8
Score

10^/10

rhadamanthys collection stealer
- Detect rhadamanthys stealer shellcode
- Rhadamanthys
  Rhadamanthys is an info stealer written in C++ first seen in August 2022.
  stealer rhadamanthys
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Accesses Microsoft Outlook profiles
  collection
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Email Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

rhadamanthyscollectionstealer

© 2018-2025

Terms | Privacy