Overview

overview

10

Static

static

3

622c78cc44...01.exe

windows7-x64

10

622c78cc44...01.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    622c78cc449ab461fd649e3c72d8f5f3dd0773364652ac0a5c8ded0b550cd801.bin

  • Size

    397KB

  • Sample

    230501-t92ncsec22

  • MD5

    35aa6576c7b8b2fdf9b6edbaf418fe95

  • SHA1

    bf52d2a71e5b451e03fedb3af43af418350b9cda

  • SHA256

    622c78cc449ab461fd649e3c72d8f5f3dd0773364652ac0a5c8ded0b550cd801

  • SHA512

    d8427f59d139d1eb7051ee66d9360acb438263cd993f8a295d15b41ea1fe57429e001fd60a57a4f1d663c6e331e588fecca830e23fe1f541c68580e18b1223f8

  • SSDEEP

    6144:pIC1YmcT623NWvptsDEtRdreDV3xr0eem6s7zX/oyFPA:pICe/623NWxiD8uP0eemRdS

Score
10/10
rhadamanthysstealer

Malware Config

Extracted

Family

rhadamanthys

C2

http://179.43.142.201/img/favicon.png

Targets

    • Target

      622c78cc449ab461fd649e3c72d8f5f3dd0773364652ac0a5c8ded0b550cd801.bin

    • Size

      397KB

    • MD5

      35aa6576c7b8b2fdf9b6edbaf418fe95

    • SHA1

      bf52d2a71e5b451e03fedb3af43af418350b9cda

    • SHA256

      622c78cc449ab461fd649e3c72d8f5f3dd0773364652ac0a5c8ded0b550cd801

    • SHA512

      d8427f59d139d1eb7051ee66d9360acb438263cd993f8a295d15b41ea1fe57429e001fd60a57a4f1d663c6e331e588fecca830e23fe1f541c68580e18b1223f8

    • SSDEEP

      6144:pIC1YmcT623NWvptsDEtRdreDV3xr0eem6s7zX/oyFPA:pICe/623NWxiD8uP0eemRdS

    Score
    10/10
    rhadamanthysstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks