Overview

overview

10

Static

static

1

dridex

windows10-1703-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c5324d553a48a1021668815a38f70a671a666d08de3e9193c3ef9c4c6072b890

  • Size

    419KB

  • Sample

    230416-g9t73aag8y

  • MD5

    e62e0d27d5350b5178e3aac27e07d23c

  • SHA1

    cae0a3b87b0d25cf325bce53e8d23ee4b77bd775

  • SHA256

    c5324d553a48a1021668815a38f70a671a666d08de3e9193c3ef9c4c6072b890

  • SHA512

    4ff1cc4f15bee7ebdf2d9906ac0af2b742470888791594a9ba9a20ef70ebd5da0d560451f5cf29f6af6bcee0398cb7053c49bf3c8e2db4514f24ff1031e85630

  • SSDEEP

    6144:9WKkQnV8rsrNKiq7umyNRhAzRnSUDsEX/t0vepBY4Xmbe4:9WFQV5rNKiqSm2o+QBYCmq4

Score
10/10
rhadamanthyscollectionstealer

Malware Config

Extracted

Family

rhadamanthys

C2

http://179.43.142.201/img/favicon.png

Targets

    • Target

      c5324d553a48a1021668815a38f70a671a666d08de3e9193c3ef9c4c6072b890

    • Size

      419KB

    • MD5

      e62e0d27d5350b5178e3aac27e07d23c

    • SHA1

      cae0a3b87b0d25cf325bce53e8d23ee4b77bd775

    • SHA256

      c5324d553a48a1021668815a38f70a671a666d08de3e9193c3ef9c4c6072b890

    • SHA512

      4ff1cc4f15bee7ebdf2d9906ac0af2b742470888791594a9ba9a20ef70ebd5da0d560451f5cf29f6af6bcee0398cb7053c49bf3c8e2db4514f24ff1031e85630

    • SSDEEP

      6144:9WKkQnV8rsrNKiq7umyNRhAzRnSUDsEX/t0vepBY4Xmbe4:9WFQV5rNKiqSm2o+QBYCmq4

    Score
    10/10
    rhadamanthyscollectionstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Accesses Microsoft Outlook profiles

      collection
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks