Overview

overview

10

Static

static

1

0b022ec9f0...96.exe

windows7-x64

10

0b022ec9f0...96.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0b022ec9f04e701c407ef27fc2684f96.exe

  • Size

    315KB

  • Sample

    230403-psx7dsgc6z

  • MD5

    0b022ec9f04e701c407ef27fc2684f96

  • SHA1

    39f593e6e3c278bec44ccb44713f370e791890fb

  • SHA256

    f1b26f0cc0816504f12258a3ee424de6fbe44726489a30318f210a97a2160fb9

  • SHA512

    0bd0d209e2ae6f7c06aa7c5161a591217f34dc402b04ab317b24f2a919647e35b56fb4b77b9aa3df8b32dc3ad1b9d1ae27bb5772d8fb74f56aaaa38c2cad9e50

  • SSDEEP

    6144:XMQ7AYGvhE/2hmRk5DmcUH5fc47Ztkjt:8sATJe2ccUH5fc47Gt

Score
10/10
rhadamanthyscollectionstealer

Malware Config

Targets

    • Target

      0b022ec9f04e701c407ef27fc2684f96.exe

    • Size

      315KB

    • MD5

      0b022ec9f04e701c407ef27fc2684f96

    • SHA1

      39f593e6e3c278bec44ccb44713f370e791890fb

    • SHA256

      f1b26f0cc0816504f12258a3ee424de6fbe44726489a30318f210a97a2160fb9

    • SHA512

      0bd0d209e2ae6f7c06aa7c5161a591217f34dc402b04ab317b24f2a919647e35b56fb4b77b9aa3df8b32dc3ad1b9d1ae27bb5772d8fb74f56aaaa38c2cad9e50

    • SSDEEP

      6144:XMQ7AYGvhE/2hmRk5DmcUH5fc47Ztkjt:8sATJe2ccUH5fc47Gt

    Score
    10/10
    rhadamanthysstealercollection

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Accesses Microsoft Outlook profiles

      collection

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks