Overview

overview

10

Static

static

3

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file.exe

  • Size

    336KB

  • Sample

    230504-bth7zahd93

  • MD5

    55ea906adf2a596446187015428919b0

  • SHA1

    c983d7b42ae0c39b8e32f0c8dc56c5d8fd0eb2e4

  • SHA256

    a56cffd6ef0070340131ce0f797bfcf31496d73e135e3c651f112e936391add8

  • SHA512

    c0e6b77fa5b5c82732ecd5a611271b99f777ebe6ed31f2860a3a75819a891af106f7182228a8c161fd249676c14f89ad1d2e2cfd1e46b55f3e81fe5795abb8f5

  • SSDEEP

    6144:XWN536qhrNyxLQdvuSksg7LwFJl2VjaFtY6yQGir0:C53HhrNybSpoCJlmWY6yQDr0

Score
10/10
rhadamanthysstealer

Malware Config

Extracted

Family

rhadamanthys

C2

http://179.43.142.201/img/favicon.png

Targets

    • Target

      file.exe

    • Size

      336KB

    • MD5

      55ea906adf2a596446187015428919b0

    • SHA1

      c983d7b42ae0c39b8e32f0c8dc56c5d8fd0eb2e4

    • SHA256

      a56cffd6ef0070340131ce0f797bfcf31496d73e135e3c651f112e936391add8

    • SHA512

      c0e6b77fa5b5c82732ecd5a611271b99f777ebe6ed31f2860a3a75819a891af106f7182228a8c161fd249676c14f89ad1d2e2cfd1e46b55f3e81fe5795abb8f5

    • SSDEEP

      6144:XWN536qhrNyxLQdvuSksg7LwFJl2VjaFtY6yQGir0:C53HhrNybSpoCJlmWY6yQDr0

    Score
    10/10
    rhadamanthysstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks