Overview

overview

10

Static

static

3

dfd8d0b216...1f.exe

windows7-x64

10

dfd8d0b216...1f.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dfd8d0b2166a7bb659d3c76b569547d7942866601aab9699b4327f3278cf781f.bin

  • Size

    338KB

  • Sample

    230501-xfs1xaff81

  • MD5

    edf72fa150d73324f7a9178d1c2d5186

  • SHA1

    a751299d5283cae65729bdd9c7b676144da24448

  • SHA256

    dfd8d0b2166a7bb659d3c76b569547d7942866601aab9699b4327f3278cf781f

  • SHA512

    1ceed3bdaaf8e304dafc564a5851c8d515dcb5ce2cc7937ceb7e06981239a3b589a2b7471a41767c6978a40904f5c8f1c9d12b510ff02cd9576b371d566e7ac9

  • SSDEEP

    6144:81AqkRvHgci0Z/pIcwxd7fVu3L91GcAySqOE:81h+vHVpq7fVG91G5ySNE

Score
10/10
rhadamanthysstealer

Malware Config

Extracted

Family

rhadamanthys

C2

http://179.43.142.201/img/favicon.png

Targets

    • Target

      dfd8d0b2166a7bb659d3c76b569547d7942866601aab9699b4327f3278cf781f.bin

    • Size

      338KB

    • MD5

      edf72fa150d73324f7a9178d1c2d5186

    • SHA1

      a751299d5283cae65729bdd9c7b676144da24448

    • SHA256

      dfd8d0b2166a7bb659d3c76b569547d7942866601aab9699b4327f3278cf781f

    • SHA512

      1ceed3bdaaf8e304dafc564a5851c8d515dcb5ce2cc7937ceb7e06981239a3b589a2b7471a41767c6978a40904f5c8f1c9d12b510ff02cd9576b371d566e7ac9

    • SSDEEP

      6144:81AqkRvHgci0Z/pIcwxd7fVu3L91GcAySqOE:81h+vHVpq7fVG91G5ySNE

    Score
    10/10
    rhadamanthysstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks