Overview

overview

10

Static

static

3

842a7f2c33...c7.exe

windows7-x64

10

842a7f2c33...c7.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    842a7f2c33571b193d3b17a11ffb24c794e49e47e35b08fb27dc831ff99a2dc7.bin

  • Size

    278KB

  • Sample

    230501-vtfavshh71

  • MD5

    6162f12feaf70a13eff693d7026bf6f3

  • SHA1

    d8013a89e5ae59a8b8714acfdfd89d2417ff19de

  • SHA256

    842a7f2c33571b193d3b17a11ffb24c794e49e47e35b08fb27dc831ff99a2dc7

  • SHA512

    d8e5ff50a7771d661952e5872fc9b9b4bd4b844e2c33746d84f767fdb32bb6a058a1d8596286e7770b4235a40e5e3a14ae99652082daec72018260ebf5dca450

  • SSDEEP

    3072:br+oQSSbSahqOZXYtZFIURJW11gMLsT7lm81GohPAmEBtpi7SBuPMQa5ivZQ0Jb7:bKSKqyYvJRywZ1GDuBRvZQ

Score
10/10
rhadamanthysstealer

Malware Config

Extracted

Family

rhadamanthys

C2

http://179.43.142.201/img/favicon.png

Targets

    • Target

      842a7f2c33571b193d3b17a11ffb24c794e49e47e35b08fb27dc831ff99a2dc7.bin

    • Size

      278KB

    • MD5

      6162f12feaf70a13eff693d7026bf6f3

    • SHA1

      d8013a89e5ae59a8b8714acfdfd89d2417ff19de

    • SHA256

      842a7f2c33571b193d3b17a11ffb24c794e49e47e35b08fb27dc831ff99a2dc7

    • SHA512

      d8e5ff50a7771d661952e5872fc9b9b4bd4b844e2c33746d84f767fdb32bb6a058a1d8596286e7770b4235a40e5e3a14ae99652082daec72018260ebf5dca450

    • SSDEEP

      3072:br+oQSSbSahqOZXYtZFIURJW11gMLsT7lm81GohPAmEBtpi7SBuPMQa5ivZQ0Jb7:bKSKqyYvJRywZ1GDuBRvZQ

    Score
    10/10
    rhadamanthysstealer

    • Detect rhadamanthys stealer shellcode

    • Detects any file with a triage score of 10

      This file has been assigned a triage score of 10, indicating a high likelihood of malicious behavior.

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks