Overview

overview

10

Static

static

3

c691b5da78...48.exe

windows7-x64

10

c691b5da78...48.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c691b5da782e10cdf29ed64c972c6472f9aa969dddab0ae3f6a9597316114148.bin

  • Size

    411KB

  • Sample

    230505-x8qfgshe52

  • MD5

    4f4268a6be19e6e43e2ad1a96a97d8a3

  • SHA1

    8f41c16ddd01774f60c91d2813716a3cfb6b6ca8

  • SHA256

    c691b5da782e10cdf29ed64c972c6472f9aa969dddab0ae3f6a9597316114148

  • SHA512

    152a4aea0ca31d09277c46c61f62f82f56e791607b2cdd3e670041219b2177825dc9030b475e940bd21caeb38f03cf5402327092c3241eb3e3bc57ec157d439c

  • SSDEEP

    6144:9rJm9GKTFBzxUclo1l8K/wZY5qESQ7b0bRNLKrucMqO:9rM0KTmclUlt/hL30bRldN

Score
10/10
rhadamanthysstealer

Malware Config

Extracted

Family

rhadamanthys

C2

http://179.43.142.201/img/favicon.png

Targets

    • Target

      c691b5da782e10cdf29ed64c972c6472f9aa969dddab0ae3f6a9597316114148.bin

    • Size

      411KB

    • MD5

      4f4268a6be19e6e43e2ad1a96a97d8a3

    • SHA1

      8f41c16ddd01774f60c91d2813716a3cfb6b6ca8

    • SHA256

      c691b5da782e10cdf29ed64c972c6472f9aa969dddab0ae3f6a9597316114148

    • SHA512

      152a4aea0ca31d09277c46c61f62f82f56e791607b2cdd3e670041219b2177825dc9030b475e940bd21caeb38f03cf5402327092c3241eb3e3bc57ec157d439c

    • SSDEEP

      6144:9rJm9GKTFBzxUclo1l8K/wZY5qESQ7b0bRNLKrucMqO:9rM0KTmclUlt/hL30bRldN

    Score
    10/10
    rhadamanthysstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks