General

  • Target

    66c2e30f837f79879b662aa4c316182fdb0850be6710d0c3dca0941b4c6a3b80

  • Size

    423KB

  • Sample

    230418-wembaseg9w

  • MD5

    8bd66fd9714e8e8f98e634edae2f8dcb

  • SHA1

    464e29a2a895c288f824064cc8874a87c04ffb33

  • SHA256

    66c2e30f837f79879b662aa4c316182fdb0850be6710d0c3dca0941b4c6a3b80

  • SHA512

    12a72e5bda08bad43d9a934885d27b940ef0a72b20d34f7abe6017da3f42feefcbdb86edb4984b35bf53d52b4b6613da0b13c018bf46f08de47c05f4198a97e9

  • SSDEEP

    6144:NUZRELfq+jmla7hq83VQTc8BAfSe4c0GWzAuMbwMCpQed94AIv:Ns2Lhjmla/3eTOM7zAuMsFfd947v

Score
10/10

Malware Config

Extracted

Family

rhadamanthys

C2

http://179.43.142.201/img/favicon.png

Targets

    • Target

      66c2e30f837f79879b662aa4c316182fdb0850be6710d0c3dca0941b4c6a3b80

    • Size

      423KB

    • MD5

      8bd66fd9714e8e8f98e634edae2f8dcb

    • SHA1

      464e29a2a895c288f824064cc8874a87c04ffb33

    • SHA256

      66c2e30f837f79879b662aa4c316182fdb0850be6710d0c3dca0941b4c6a3b80

    • SHA512

      12a72e5bda08bad43d9a934885d27b940ef0a72b20d34f7abe6017da3f42feefcbdb86edb4984b35bf53d52b4b6613da0b13c018bf46f08de47c05f4198a97e9

    • SSDEEP

      6144:NUZRELfq+jmla7hq83VQTc8BAfSe4c0GWzAuMbwMCpQed94AIv:Ns2Lhjmla/3eTOM7zAuMsFfd947v

    Score
    10/10
    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

MITRE ATT&CK Matrix

Tasks