General

  • Target

    f70f71eb602fc634ae60cf5303839b9cdb35da6db82f8d4695dffe18410a61d2

  • Size

    424KB

  • Sample

    230418-ph3dcsda7z

  • MD5

    a0ab5f6b11ca64c79ee67e7537460d39

  • SHA1

    b4134b301699fdf782c3fbea6c1073724b3800ac

  • SHA256

    f70f71eb602fc634ae60cf5303839b9cdb35da6db82f8d4695dffe18410a61d2

  • SHA512

    a9431eb06190ade131f6dc248a87cd581fce3e02927fb011e87fbf4fe0812048d3ce6999d645fe93d426cf53941416614173867e7f5ed0048861b9a0128f576b

  • SSDEEP

    12288:Z3vXBHJ58PsMQz7a7hsxmqCadAldiYrm:Z/X9JMEm7kCadAlw2

Score
10/10

Malware Config

Extracted

Family

rhadamanthys

C2

http://179.43.142.201/img/favicon.png

Targets

    • Target

      f70f71eb602fc634ae60cf5303839b9cdb35da6db82f8d4695dffe18410a61d2

    • Size

      424KB

    • MD5

      a0ab5f6b11ca64c79ee67e7537460d39

    • SHA1

      b4134b301699fdf782c3fbea6c1073724b3800ac

    • SHA256

      f70f71eb602fc634ae60cf5303839b9cdb35da6db82f8d4695dffe18410a61d2

    • SHA512

      a9431eb06190ade131f6dc248a87cd581fce3e02927fb011e87fbf4fe0812048d3ce6999d645fe93d426cf53941416614173867e7f5ed0048861b9a0128f576b

    • SSDEEP

      12288:Z3vXBHJ58PsMQz7a7hsxmqCadAldiYrm:Z/X9JMEm7kCadAlw2

    Score
    10/10
    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

MITRE ATT&CK Matrix

Tasks