General

  • Target

    84ea78e49b50c839184359817be2d01d.exe

  • Size

    375KB

  • Sample

    230508-kh694ahg34

  • MD5

    84ea78e49b50c839184359817be2d01d

  • SHA1

    c83c1e2cb5ab7988765aea3697dab23aa16d42d3

  • SHA256

    cba464617c0ab39774135cc89752650e41f8ed3cfc773619995be0267f7570a8

  • SHA512

    0aba57438c106e32a4645ad3ddb9ad5a481fd9ab15d288148caf3c7574cad2cbba513b532c15243214925e1d3d7415641058fb5a749f0319d79569f927e14953

  • SSDEEP

    6144:W/3ZCBLID/EP5mmj9EN1zj+DMT/omPwl2IVYm:W/3sm/EYWvDsgmPwv

Score
10/10

Malware Config

Extracted

Family

rhadamanthys

C2

http://179.43.142.201/img/favicon.png

Targets

    • Target

      84ea78e49b50c839184359817be2d01d.exe

    • Size

      375KB

    • MD5

      84ea78e49b50c839184359817be2d01d

    • SHA1

      c83c1e2cb5ab7988765aea3697dab23aa16d42d3

    • SHA256

      cba464617c0ab39774135cc89752650e41f8ed3cfc773619995be0267f7570a8

    • SHA512

      0aba57438c106e32a4645ad3ddb9ad5a481fd9ab15d288148caf3c7574cad2cbba513b532c15243214925e1d3d7415641058fb5a749f0319d79569f927e14953

    • SSDEEP

      6144:W/3ZCBLID/EP5mmj9EN1zj+DMT/omPwl2IVYm:W/3sm/EYWvDsgmPwv

    Score
    10/10
    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

MITRE ATT&CK Matrix

Tasks