Overview

overview

10

Static

static

1

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4c6587ccf02e86315a81ae5c1abbdb447993f381ee8e54a736761cd0a996e3c9

  • Size

    312KB

  • Sample

    230331-hgdv2sgg44

  • MD5

    ce72b20d96d366402975c49b27094123

  • SHA1

    02c65585edaae3ebc8528eb4ff83d5a2e5fd9783

  • SHA256

    4c6587ccf02e86315a81ae5c1abbdb447993f381ee8e54a736761cd0a996e3c9

  • SHA512

    7b9a4d3ba1059623682483fe7676e40ceffec9315fed78598060ae33c7cd6c591c2d3320dd2ae672b913f434c45cdb01195199478b8299edcd222cf6a704da79

  • SSDEEP

    3072:e4wBlxFRGw58XqudMxI+Otg4UswfChY4GSSzZWlXY5R1pkPpaeuxvrm2H75brsAP:klxeLquFtKwQ1We6aBVJ75vh7dik

Score
10/10
rhadamanthyscollectionstealer

Malware Config

Targets

    • Target

      4c6587ccf02e86315a81ae5c1abbdb447993f381ee8e54a736761cd0a996e3c9

    • Size

      312KB

    • MD5

      ce72b20d96d366402975c49b27094123

    • SHA1

      02c65585edaae3ebc8528eb4ff83d5a2e5fd9783

    • SHA256

      4c6587ccf02e86315a81ae5c1abbdb447993f381ee8e54a736761cd0a996e3c9

    • SHA512

      7b9a4d3ba1059623682483fe7676e40ceffec9315fed78598060ae33c7cd6c591c2d3320dd2ae672b913f434c45cdb01195199478b8299edcd222cf6a704da79

    • SSDEEP

      3072:e4wBlxFRGw58XqudMxI+Otg4UswfChY4GSSzZWlXY5R1pkPpaeuxvrm2H75brsAP:klxeLquFtKwQ1We6aBVJ75vh7dik

    Score
    10/10
    rhadamanthyscollectionstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Accesses Microsoft Outlook profiles

      collection

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks