Overview

overview

10

Static

static

3

f641703a51...4f.exe

windows7-x64

10

f641703a51...4f.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f641703a511e60fcc3514723a374214f.exe

  • Size

    405KB

  • Sample

    230509-hnmfrsge7w

  • MD5

    f641703a511e60fcc3514723a374214f

  • SHA1

    043f51aee2f854a729edabefdb7df58ab6db99d6

  • SHA256

    cbe0c63e75f5586741a62e04f41339bc0d96f17b165e7d7ff6b8b635cb9a5e8a

  • SHA512

    38377c4919f0a3950d05a37da6aec2ba0949190c627a77f30ec718c8c4ea0d3476062ea2a64b08c962e6c554f0828dd32ecca3a2de6d9dd0f422f7c7963e0a56

  • SSDEEP

    3072:dFUqpnR/lNp8fQPFfkeQa8rAxRN/DEN2zpItzlk9CjnkCfdgzapgkQFX5kLQHtX3:dzn/McFv5Pxw2EUCnVfunbnXSyguM

Score
10/10
rhadamanthysstealer

Malware Config

Extracted

Family

rhadamanthys

C2

http://179.43.142.201/img/favicon.png

Targets

    • Target

      f641703a511e60fcc3514723a374214f.exe

    • Size

      405KB

    • MD5

      f641703a511e60fcc3514723a374214f

    • SHA1

      043f51aee2f854a729edabefdb7df58ab6db99d6

    • SHA256

      cbe0c63e75f5586741a62e04f41339bc0d96f17b165e7d7ff6b8b635cb9a5e8a

    • SHA512

      38377c4919f0a3950d05a37da6aec2ba0949190c627a77f30ec718c8c4ea0d3476062ea2a64b08c962e6c554f0828dd32ecca3a2de6d9dd0f422f7c7963e0a56

    • SSDEEP

      3072:dFUqpnR/lNp8fQPFfkeQa8rAxRN/DEN2zpItzlk9CjnkCfdgzapgkQFX5kLQHtX3:dzn/McFv5Pxw2EUCnVfunbnXSyguM

    Score
    10/10
    rhadamanthysstealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks