General
-
Target
build.exe
-
Size
3.3MB
-
Sample
240401-fq3vesef79
-
MD5
f8ada9a69d7fab6ac2b59a4b8c1f6f6b
-
SHA1
c412517eaa1dc21c404d2af6e47010301a1d86a7
-
SHA256
8541e6341ffa20b9e670f34ddda6b216af04b129c237be12eba7fc42c2f14b16
-
SHA512
1d635e44ec8eeb9f826b5bdd78480fe5958f7a991235369ca2ee3b98899a9f289d0a165a08d97d98dad044464bfc015eac99d1b973bb3b918464dc3b0e9971bd
-
SSDEEP
98304:A+UPR0leq5gXtFxlH56Y+PdBN0rAf3sKDWMLmV0DCKL:74R0lelD4BtmV0DJ
Static task
static1
Behavioral task
behavioral1
Sample
build.exe
Resource
win11-20240221-en
Malware Config
Targets
-
-
Target
build.exe
-
Size
3.3MB
-
MD5
f8ada9a69d7fab6ac2b59a4b8c1f6f6b
-
SHA1
c412517eaa1dc21c404d2af6e47010301a1d86a7
-
SHA256
8541e6341ffa20b9e670f34ddda6b216af04b129c237be12eba7fc42c2f14b16
-
SHA512
1d635e44ec8eeb9f826b5bdd78480fe5958f7a991235369ca2ee3b98899a9f289d0a165a08d97d98dad044464bfc015eac99d1b973bb3b918464dc3b0e9971bd
-
SSDEEP
98304:A+UPR0leq5gXtFxlH56Y+PdBN0rAf3sKDWMLmV0DCKL:74R0lelD4BtmV0DJ
Score10/10-
Rhadamanthys
Rhadamanthys is an info stealer written in C++ first seen in August 2022.
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-