rhadamanthys | 82cd5165315510f79665f04a6ddbb0ff96fc7ee3f74bf43243ef42d33d674028 | Triage

Submit
Reports

Overview

overview

Static

static

3

dridex

windows10-2004-x64

Sharing

General

Target

82cd5165315510f79665f04a6ddbb0ff96fc7ee3f74bf43243ef42d33d674028
Size

498KB
Sample

230618-hn9lasfb8v
MD5

b66698de60fb2e222c9e75cfd45f83b2
SHA1

708bcb2d94cab1d363a1f59b9019f95186c47867
SHA256

82cd5165315510f79665f04a6ddbb0ff96fc7ee3f74bf43243ef42d33d674028
SHA512

c56706b2d44cdcaf2ede9a896c1d6ddfe8de1c93c0fea66eee24e44d32a5dde3bd66e1a7c9fb534f9e2fa7b0a3b3e32592c15801947c78efc19d5ad13b6a8c57
SSDEEP

6144:ANjADf4b0Hm8mkG9k+5VGg7PiR/vzOYzxgUU8Mz1hV4NopDdYEhx0kbRaMYjSPpM:jf40G9kyGdLOYPexVbhx0kbPOSB+Z5

Score

10^/10

rhadamanthys collection stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

82cd5165315510f79665f04a6ddbb0ff96fc7ee3f74bf43243ef42d33d674028.exe

Resource

win10v2004-20230220-en

rhadamanthys collection stealer

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  82cd5165315510f79665f04a6ddbb0ff96fc7ee3f74bf43243ef42d33d674028
- Size
  
  498KB
- MD5
  
  b66698de60fb2e222c9e75cfd45f83b2
- SHA1
  
  708bcb2d94cab1d363a1f59b9019f95186c47867
- SHA256
  
  82cd5165315510f79665f04a6ddbb0ff96fc7ee3f74bf43243ef42d33d674028
- SHA512
  
  c56706b2d44cdcaf2ede9a896c1d6ddfe8de1c93c0fea66eee24e44d32a5dde3bd66e1a7c9fb534f9e2fa7b0a3b3e32592c15801947c78efc19d5ad13b6a8c57
- SSDEEP
  
  6144:ANjADf4b0Hm8mkG9k+5VGg7PiR/vzOYzxgUU8Mz1hV4NopDdYEhx0kbRaMYjSPpM:jf40G9kyGdLOYPexVbhx0kbPOSB+Z5
Score

10^/10

rhadamanthys collection stealer
- Detect rhadamanthys stealer shellcode
- Rhadamanthys
  Rhadamanthys is an info stealer written in C++ first seen in August 2022.
  stealer rhadamanthys
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Accesses Microsoft Outlook profiles
  collection
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Email Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

rhadamanthyscollectionstealer

© 2018-2024

Terms | Privacy