Overview

overview

10

Static

static

1

dridex

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    37a4853a99035a88e872fbbbd8c7c6969cc4d683f62a55666590e192589c0865

  • Size

    412KB

  • Sample

    230421-b32exafd5w

  • MD5

    d952bd55c6504f57fa231f0606fdebc7

  • SHA1

    1d865ea67d038501baee6611c0cb6f8fba5ce77d

  • SHA256

    37a4853a99035a88e872fbbbd8c7c6969cc4d683f62a55666590e192589c0865

  • SHA512

    eb719116fc01dff28c732ea96ff45aa0080869afca2d3f9fd276fd9ea9ebab5ca8884c622dcb8125d1faf39ad880c2d221d0b91f3be54559a7b8f9e99ce719b2

  • SSDEEP

    6144:o8cSzJnqALyTfaPJcZN5ZFayz83EttJQzGyA4LfwggUzT+Qf7co/9r2i:oudqAEfw+ZPzaU80ttJgzLBWQDd/9r1

Score
10/10
rhadamanthyscollectionstealer

Malware Config

Extracted

Family

rhadamanthys

C2

http://179.43.142.201/img/favicon.png

Targets

    • Target

      37a4853a99035a88e872fbbbd8c7c6969cc4d683f62a55666590e192589c0865

    • Size

      412KB

    • MD5

      d952bd55c6504f57fa231f0606fdebc7

    • SHA1

      1d865ea67d038501baee6611c0cb6f8fba5ce77d

    • SHA256

      37a4853a99035a88e872fbbbd8c7c6969cc4d683f62a55666590e192589c0865

    • SHA512

      eb719116fc01dff28c732ea96ff45aa0080869afca2d3f9fd276fd9ea9ebab5ca8884c622dcb8125d1faf39ad880c2d221d0b91f3be54559a7b8f9e99ce719b2

    • SSDEEP

      6144:o8cSzJnqALyTfaPJcZN5ZFayz83EttJQzGyA4LfwggUzT+Qf7co/9r2i:oudqAEfw+ZPzaU80ttJgzLBWQDd/9r1

    Score
    10/10
    rhadamanthyscollectionstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Accesses Microsoft Outlook profiles

      collection
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks