General

  • Target

    97ee222794b0e20266259caf3ff1e198f56c4cf87af316452a9bd2f8f9982a6b

  • Size

    17.2MB

  • Sample

    240212-3sjkwsga74

  • MD5

    0432cad278795630a71f066279b82c5a

  • SHA1

    99b75ba66262296f9b96559766fa6fe713108075

  • SHA256

    97ee222794b0e20266259caf3ff1e198f56c4cf87af316452a9bd2f8f9982a6b

  • SHA512

    f2226d00aecb58a5d15f8db35576804a252417de1b3c802b1d7371f95d8a9fd20a1480d881924180bd8f765c50238e5c3cafdf48bb8daa9a8cca852c8ea64dc5

  • SSDEEP

    98304:XuMTgzeyo9xCFwHOqN1PORdrxsxIV7OoUZ3wEVRqSaSege6I2gxtvuri5NPYkgVG:/ryo9xCFwj2rgIV/ULVneA

Score
10/10

Malware Config

Targets

    • Target

      97ee222794b0e20266259caf3ff1e198f56c4cf87af316452a9bd2f8f9982a6b

    • Size

      17.2MB

    • MD5

      0432cad278795630a71f066279b82c5a

    • SHA1

      99b75ba66262296f9b96559766fa6fe713108075

    • SHA256

      97ee222794b0e20266259caf3ff1e198f56c4cf87af316452a9bd2f8f9982a6b

    • SHA512

      f2226d00aecb58a5d15f8db35576804a252417de1b3c802b1d7371f95d8a9fd20a1480d881924180bd8f765c50238e5c3cafdf48bb8daa9a8cca852c8ea64dc5

    • SSDEEP

      98304:XuMTgzeyo9xCFwHOqN1PORdrxsxIV7OoUZ3wEVRqSaSege6I2gxtvuri5NPYkgVG:/ryo9xCFwj2rgIV/ULVneA

    Score
    10/10
    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks