General

  • Target

    81d0c7a6886958eba58b6d0d92b7682c.bin

  • Size

    236KB

  • Sample

    230510-b5ghhsdg55

  • MD5

    f3252729109cfde2985d855c7d63c620

  • SHA1

    f019adffd819d26461e1a04cbe174ce7bdcf3c5b

  • SHA256

    b9c7f4ba2b28f23acf6e3bc638879a5851d28c3c9f6f145d3118a8e3eb3a9cb1

  • SHA512

    5b5b07bd8365f4ae88f9ee71d0f56a5035047ac476aa137db9171b6a2435191d7b86ed75251bf5eba0994df535c80c99789ae0a9d5c475c26431f61ef4120c29

  • SSDEEP

    6144:ieW7uoIeAGfljRByQqD5MGHghAdzgKPq7Oa7LHLj8ebU14Mx8:Zaubebdj3qW6gK0Oa7Dv8eAfm

Score
10/10

Malware Config

Extracted

Family

rhadamanthys

C2

http://179.43.142.201/img/favicon.png

Targets

    • Target

      ccad7b6f65bf0381e93cabfceeb6e0bc5f838a37112981733b7f719f8d90087e.exe

    • Size

      387KB

    • MD5

      81d0c7a6886958eba58b6d0d92b7682c

    • SHA1

      1cc851614516ee1bea57103f68ac0fa36f9943c8

    • SHA256

      ccad7b6f65bf0381e93cabfceeb6e0bc5f838a37112981733b7f719f8d90087e

    • SHA512

      59233db93e08d1265f54f0a06d29c5ce8f46fe4fbbda56ab11eb3cfc57645861776d1ec248b4a6863ffc116d4428105ac8ba169b19bb2b9d4be31f7011e541b9

    • SSDEEP

      6144:eg4hDeq+PwQXKNf8sFrl2lX7YgUnnVEqg0A7V:evhDehPwIKuGrk7YgiVDg

    Score
    10/10
    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

MITRE ATT&CK Matrix

Tasks