General
-
Target
3b33d9480f3dcbcbcf663c6c66acb149ac118cd8cbef1a2603715b9df6b21551.zip
-
Size
237KB
-
Sample
230516-zhrlzabf41
-
MD5
b90dd6e4130a21a7179323cfb6e25633
-
SHA1
5579189ac028f129c83bb81d6694a97d89d1c560
-
SHA256
3c27e16df09168afe16b64d24155daa7f9d9704d658f68d0ab72eb946c2d9eb9
-
SHA512
1e80de92ce50ad5095b1dda65725b184169848bf693d84eacaed8411300fcda1f44bac3d51f990d32a2bd1d197160ec94a649f7d394e70c33c8fe6235fd82804
-
SSDEEP
6144:yewtfqX+tUVVof2RwrImPhRrV9lVF0c6JoxQ4paCc:yX4Vu0wRrx9lv6yK4pJc
Static task
static1
Behavioral task
behavioral1
Sample
3b33d9480f3dcbcbcf663c6c66acb149ac118cd8cbef1a2603715b9df6b21551.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
3b33d9480f3dcbcbcf663c6c66acb149ac118cd8cbef1a2603715b9df6b21551.exe
Resource
win10v2004-20230221-en
Malware Config
Extracted
rhadamanthys
http://179.43.142.201/img/favicon.png
Targets
-
-
Target
3b33d9480f3dcbcbcf663c6c66acb149ac118cd8cbef1a2603715b9df6b21551.exe
-
Size
370KB
-
MD5
05c7aef3bfef4d322efbca5c0cd94669
-
SHA1
0f1f6ed446e23551c38db12a5d61a81fe9329242
-
SHA256
3b33d9480f3dcbcbcf663c6c66acb149ac118cd8cbef1a2603715b9df6b21551
-
SHA512
7763c6ad293d6a4b9656cc4b68b6ace5dd55cc79f8c788907a86253b5b70d312e60ef443874a6c25c2f74c3a048300bf348599f0d2105f36f43d65be5fe6e808
-
SSDEEP
6144:stCzj7OQfLG0yRGR8uLDa9PewOUrk8kIinVHuxsZWL:Ss7OQfLcGR8UGdHFiH6TL
Score10/10-
Detect rhadamanthys stealer shellcode
-
Rhadamanthys
Rhadamanthys is an info stealer written in C++ first seen in August 2022.
-