rhadamanthys | 4614e3218d6d9b76fc34d1e6256ebee57bf1ef581ea623c7f5b3ccbaf22e2246 | Triage

Submit
Reports

Overview

overview

Static

static

3

dridex

windows10-2004-x64

Sharing

General

Target

4614e3218d6d9b76fc34d1e6256ebee57bf1ef581ea623c7f5b3ccbaf22e2246
Size

449KB
Sample

230619-fsva3acg8w
MD5

a9da50bf67b79c2cdda4236117dc9ef7
SHA1

f1c79e6af296def803490cb8f524d07ee68f1cfa
SHA256

4614e3218d6d9b76fc34d1e6256ebee57bf1ef581ea623c7f5b3ccbaf22e2246
SHA512

3e8738a5eaedde849e23a8f9147bcf08e1581d1ae6b1c960866127536a3c5bbfb66edb5a595ffa26af7553bbc7c1f1e8b1ad22cf6c4fdbe306fd33e442d8f14f
SSDEEP

6144:FAL9AOnScISwj6VrJ4jRgMHSRAnhicVQlusFJsz4CYPz66aPY5RSBm:FAxfn5tIRgMbnh6AMdCs+zPYy

Score

10^/10

rhadamanthys collection stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

4614e3218d6d9b76fc34d1e6256ebee57bf1ef581ea623c7f5b3ccbaf22e2246.exe

Resource

win10v2004-20230220-en

rhadamanthys collection stealer

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  4614e3218d6d9b76fc34d1e6256ebee57bf1ef581ea623c7f5b3ccbaf22e2246
- Size
  
  449KB
- MD5
  
  a9da50bf67b79c2cdda4236117dc9ef7
- SHA1
  
  f1c79e6af296def803490cb8f524d07ee68f1cfa
- SHA256
  
  4614e3218d6d9b76fc34d1e6256ebee57bf1ef581ea623c7f5b3ccbaf22e2246
- SHA512
  
  3e8738a5eaedde849e23a8f9147bcf08e1581d1ae6b1c960866127536a3c5bbfb66edb5a595ffa26af7553bbc7c1f1e8b1ad22cf6c4fdbe306fd33e442d8f14f
- SSDEEP
  
  6144:FAL9AOnScISwj6VrJ4jRgMHSRAnhicVQlusFJsz4CYPz66aPY5RSBm:FAxfn5tIRgMbnh6AMdCs+zPYy
Score

10^/10

rhadamanthys collection stealer
- Detect rhadamanthys stealer shellcode
- Rhadamanthys
  Rhadamanthys is an info stealer written in C++ first seen in August 2022.
  stealer rhadamanthys
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Accesses Microsoft Outlook profiles
  collection
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Email Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

rhadamanthyscollectionstealer

© 2018-2024

Terms | Privacy