Overview

overview

10

Static

static

3

698ce2cd65...56.exe

windows7-x64

10

698ce2cd65...56.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    698ce2cd655de784d4c2d82f075bad56.exe.bin

  • Size

    353KB

  • Sample

    230501-alxjysch96

  • MD5

    698ce2cd655de784d4c2d82f075bad56

  • SHA1

    6cf612fc152cdad59caac07bb73db943e4bf0cdc

  • SHA256

    e4e4d31befd74c000d49c480916ac805be52fc604b9dcb4f7ca7590fce972be6

  • SHA512

    ed688a95eb99206c8837f31e2764581f3ac9ecb4d08cb4b5b778a8e983fd6358a25f262715f4287040dd072d8c1aa50b32bc88401cb69aa84be3e52541ca022a

  • SSDEEP

    6144:XxtqcrHTgp+ye1wMAjVqJFkTSmyqNZdNL1:htqcM+raDjVquSqdN

Score
10/10
rhadamanthysstealer

Malware Config

Extracted

Family

rhadamanthys

C2

http://179.43.142.201/img/favicon.png

Targets

    • Target

      698ce2cd655de784d4c2d82f075bad56.exe.bin

    • Size

      353KB

    • MD5

      698ce2cd655de784d4c2d82f075bad56

    • SHA1

      6cf612fc152cdad59caac07bb73db943e4bf0cdc

    • SHA256

      e4e4d31befd74c000d49c480916ac805be52fc604b9dcb4f7ca7590fce972be6

    • SHA512

      ed688a95eb99206c8837f31e2764581f3ac9ecb4d08cb4b5b778a8e983fd6358a25f262715f4287040dd072d8c1aa50b32bc88401cb69aa84be3e52541ca022a

    • SSDEEP

      6144:XxtqcrHTgp+ye1wMAjVqJFkTSmyqNZdNL1:htqcM+raDjVquSqdN

    Score
    10/10
    rhadamanthysstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks