General

  • Target

    5fd11f43ba0a0a3533364d69e9d93b3e94bab872dcec35ddd961bcb4b5daeb8c

  • Size

    423KB

  • Sample

    230415-kl32vade82

  • MD5

    750b48b4872b170f1cea215e6a111123

  • SHA1

    7bfc650a103b29f2a554a1a5388b2cfd36367147

  • SHA256

    5fd11f43ba0a0a3533364d69e9d93b3e94bab872dcec35ddd961bcb4b5daeb8c

  • SHA512

    37cb5b6fc1bec2643501dd0eadc4badff9977983fe5cda8d18eefad27d9e02963b3f67fb8c0837833a1261fe3090d5ad9610ec63fcce4f5d733b51169da86520

  • SSDEEP

    6144:xHamwyxKNLhk4tXuneRSGKpI3QwjUsjpTra+DwU/W1Ti:xHadyxKNLhk4tXJLKpIA9OWKWE

Score
10/10

Malware Config

Extracted

Family

rhadamanthys

C2

http://179.43.142.201/img/favicon.png

Targets

    • Target

      5fd11f43ba0a0a3533364d69e9d93b3e94bab872dcec35ddd961bcb4b5daeb8c

    • Size

      423KB

    • MD5

      750b48b4872b170f1cea215e6a111123

    • SHA1

      7bfc650a103b29f2a554a1a5388b2cfd36367147

    • SHA256

      5fd11f43ba0a0a3533364d69e9d93b3e94bab872dcec35ddd961bcb4b5daeb8c

    • SHA512

      37cb5b6fc1bec2643501dd0eadc4badff9977983fe5cda8d18eefad27d9e02963b3f67fb8c0837833a1261fe3090d5ad9610ec63fcce4f5d733b51169da86520

    • SSDEEP

      6144:xHamwyxKNLhk4tXuneRSGKpI3QwjUsjpTra+DwU/W1Ti:xHadyxKNLhk4tXJLKpIA9OWKWE

    Score
    10/10
    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

MITRE ATT&CK Matrix

Tasks