General
-
Target
c75beb55aae57a765cf06a17e6b2069b4a9c405569f6f3a9b01d8c5fc9658501
-
Size
306KB
-
Sample
230423-kr2e7scd55
-
MD5
d0d57fef110c4f5f7f5e5d3520d990f3
-
SHA1
bf9cdfc8506e2f8e09329497e942cda631453622
-
SHA256
c75beb55aae57a765cf06a17e6b2069b4a9c405569f6f3a9b01d8c5fc9658501
-
SHA512
86a15c1c442e93a6aec15cfb0a351ad4947719d214d3eacbffad54744d3fa2ef11d4cd6c7bd96ee1fa255f0aabf4305fa728b7fc95326adcb993172691123ce9
-
SSDEEP
3072:M6cNNvdIY77z1DPfiiUNoyZYKoIlPtFw9wkWPZ4+W5ZRhhY4l:RK59DniiUSyuKx1CSNPzuZ
Malware Config
Extracted
rhadamanthys
http://179.43.142.201/img/favicon.png
Targets
-
-
Target
c75beb55aae57a765cf06a17e6b2069b4a9c405569f6f3a9b01d8c5fc9658501
-
Size
306KB
-
MD5
d0d57fef110c4f5f7f5e5d3520d990f3
-
SHA1
bf9cdfc8506e2f8e09329497e942cda631453622
-
SHA256
c75beb55aae57a765cf06a17e6b2069b4a9c405569f6f3a9b01d8c5fc9658501
-
SHA512
86a15c1c442e93a6aec15cfb0a351ad4947719d214d3eacbffad54744d3fa2ef11d4cd6c7bd96ee1fa255f0aabf4305fa728b7fc95326adcb993172691123ce9
-
SSDEEP
3072:M6cNNvdIY77z1DPfiiUNoyZYKoIlPtFw9wkWPZ4+W5ZRhhY4l:RK59DniiUSyuKx1CSNPzuZ
Score10/10-
Detect rhadamanthys stealer shellcode
-
Rhadamanthys
Rhadamanthys is an info stealer written in C++ first seen in August 2022.
-
Accesses Microsoft Outlook profiles
-