Overview

overview

10

Static

static

1

Sig.exe

windows7-x64

1

Sig.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    Sig.exe

  • Size

    1.2MB

  • Sample

    240219-zelasadc63

  • MD5

    4db81c82e38ed5b998b59441e3801177

  • SHA1

    e3a2aca7e6686c344e2fcaa0a5e73189ad119a6a

  • SHA256

    d518c979dc2c1d1501e14c64ba7321f866882537492fc9d1a50c9e0c3bbe5756

  • SHA512

    c2b3d7d0b120fcbc3c93bd6589b89db2e6676c7e8fb78912c072bf1958decb025dc6b01b41011101e67aaf06c9365b312cfb52b3c3e4577c263af6e3b701d995

  • SSDEEP

    24576:DoBfHpL5Z8bEjIQs/P1zTBNQ+UXZxqU1JpsY0HzitY1zBp0dxPY85219zryK4GT1:DoBfHpL5Z8bEIQEP1zTBNQnXZP1JpsYB

Score
10/10
rhadamanthysstealer

Malware Config

Targets

    • Target

      Sig.exe

    • Size

      1.2MB

    • MD5

      4db81c82e38ed5b998b59441e3801177

    • SHA1

      e3a2aca7e6686c344e2fcaa0a5e73189ad119a6a

    • SHA256

      d518c979dc2c1d1501e14c64ba7321f866882537492fc9d1a50c9e0c3bbe5756

    • SHA512

      c2b3d7d0b120fcbc3c93bd6589b89db2e6676c7e8fb78912c072bf1958decb025dc6b01b41011101e67aaf06c9365b312cfb52b3c3e4577c263af6e3b701d995

    • SSDEEP

      24576:DoBfHpL5Z8bEjIQs/P1zTBNQ+UXZxqU1JpsY0HzitY1zBp0dxPY85219zryK4GT1:DoBfHpL5Z8bEIQEP1zTBNQnXZP1JpsYB

    Score
    10/10
    rhadamanthysstealer

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks