Overview

overview

10

Static

static

3

203b02d84f...49.exe

windows7-x64

10

203b02d84f...49.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    203b02d84f569302d42f5eedd2293249.exe

  • Size

    380KB

  • Sample

    230505-pq7m2sae32

  • MD5

    203b02d84f569302d42f5eedd2293249

  • SHA1

    637be60134a9dc2b9e6ae5537e113a68260918ff

  • SHA256

    f50d0f3ff38f7407ab1313ab14067fb3912b810147c265fefd1a9651f53b4fd9

  • SHA512

    d8b8470f1d909385b95fcb48827ea3926833bef5b2bbfda6071d0e5ed6913ae2c64e691624839ae311ce40788f32cfaf55ce28ca53871a9a3d6bffe3e4f3633e

  • SSDEEP

    3072:+t2aR6gCwC7T4nPKIK1G+xCuZwb6LyvUdwkQWXn8qFGsS2nPHTPKD5hudu4UW6xY:ZUAwFP+I0MUdwun8pGMuTWty

Score
10/10
rhadamanthysstealer

Malware Config

Extracted

Family

rhadamanthys

C2

http://179.43.142.201/img/favicon.png

Targets

    • Target

      203b02d84f569302d42f5eedd2293249.exe

    • Size

      380KB

    • MD5

      203b02d84f569302d42f5eedd2293249

    • SHA1

      637be60134a9dc2b9e6ae5537e113a68260918ff

    • SHA256

      f50d0f3ff38f7407ab1313ab14067fb3912b810147c265fefd1a9651f53b4fd9

    • SHA512

      d8b8470f1d909385b95fcb48827ea3926833bef5b2bbfda6071d0e5ed6913ae2c64e691624839ae311ce40788f32cfaf55ce28ca53871a9a3d6bffe3e4f3633e

    • SSDEEP

      3072:+t2aR6gCwC7T4nPKIK1G+xCuZwb6LyvUdwkQWXn8qFGsS2nPHTPKD5hudu4UW6xY:ZUAwFP+I0MUdwun8pGMuTWty

    Score
    10/10
    rhadamanthysstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks