General

  • Target

    9850d8adebe8b5e80200e988be2b7f236a282a30629e3f5b989f5f646d63880c

  • Size

    304KB

  • Sample

    230502-xwpcnacb89

  • MD5

    7505a362f0c00ec75bfc39195c4b83b8

  • SHA1

    e32a0d4c597d5d6b9ac71f87ddeb51c596db056a

  • SHA256

    9850d8adebe8b5e80200e988be2b7f236a282a30629e3f5b989f5f646d63880c

  • SHA512

    304d8f5c466c66da132c399c55cd61b27719eeffa89647ecc0213583890203fa2efd4b9112ccb2ee991952a46523ae274fd2a9e14509beaf4c8b27d36f8b9854

  • SSDEEP

    6144:geGMRNFWR3a3AADrcJJQ2dPmS6LjrJ3eIwXOyxDr:geGENF83aprmS2pCXJCXOo

Score
10/10

Malware Config

Extracted

Family

rhadamanthys

C2

http://179.43.142.201/img/favicon.png

Targets

    • Target

      9850d8adebe8b5e80200e988be2b7f236a282a30629e3f5b989f5f646d63880c

    • Size

      304KB

    • MD5

      7505a362f0c00ec75bfc39195c4b83b8

    • SHA1

      e32a0d4c597d5d6b9ac71f87ddeb51c596db056a

    • SHA256

      9850d8adebe8b5e80200e988be2b7f236a282a30629e3f5b989f5f646d63880c

    • SHA512

      304d8f5c466c66da132c399c55cd61b27719eeffa89647ecc0213583890203fa2efd4b9112ccb2ee991952a46523ae274fd2a9e14509beaf4c8b27d36f8b9854

    • SSDEEP

      6144:geGMRNFWR3a3AADrcJJQ2dPmS6LjrJ3eIwXOyxDr:geGENF83aprmS2pCXJCXOo

    Score
    10/10
    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

MITRE ATT&CK Matrix

Tasks