Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

78ca6ef281...84.exe

windows7-x64

1

78ca6ef281...84.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    78ca6ef28110000e4a9007499388cb84

  • Size

    1.2MB

  • Sample

    240113-pg7axsbab4

  • MD5

    78ca6ef28110000e4a9007499388cb84

  • SHA1

    c8c71aa3a3d2e0710748c8433d8088fa3b37d357

  • SHA256

    7f30a21151eee81870a014119d6824a245b8d534f0501917d8920f8ee1188bac

  • SHA512

    a4b76af9ffc364334059e891a1a1245d3506210437d33ca5f8c9ba44e2a74c5dc2e6fd913dd4f0096657648b9e349fe09867efe1b86b007f8c2a61904143844c

  • SSDEEP

    24576:GSeLmAfyrmtqmKdIn1lTrTYxxN7Gu2mbmrU3WmiYESsf+PByu/:Qgc1lTrTaxNn2mclXSsf+PE

Score
10/10
rhadamanthysstealer

Malware Config

Targets

    • Target

      78ca6ef28110000e4a9007499388cb84

    • Size

      1.2MB

    • MD5

      78ca6ef28110000e4a9007499388cb84

    • SHA1

      c8c71aa3a3d2e0710748c8433d8088fa3b37d357

    • SHA256

      7f30a21151eee81870a014119d6824a245b8d534f0501917d8920f8ee1188bac

    • SHA512

      a4b76af9ffc364334059e891a1a1245d3506210437d33ca5f8c9ba44e2a74c5dc2e6fd913dd4f0096657648b9e349fe09867efe1b86b007f8c2a61904143844c

    • SSDEEP

      24576:GSeLmAfyrmtqmKdIn1lTrTYxxN7Gu2mbmrU3WmiYESsf+PByu/:Qgc1lTrTaxNn2mclXSsf+PE

    Score
    10/10
    rhadamanthysstealer

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks