General

  • Target

    5d93c67ddde2e5fdc00a4e5777aa37d9ea4639227c633d044fb467b210640d28.exe

  • Size

    386KB

  • Sample

    240402-bjz3qscg73

  • MD5

    cfd2733ba128f49a373042a1a6c3fe19

  • SHA1

    5782fffc3d9e4d815fa0ec6315c5f237edfb9ae9

  • SHA256

    5d93c67ddde2e5fdc00a4e5777aa37d9ea4639227c633d044fb467b210640d28

  • SHA512

    be1a9fae4148cd6b567903f8fe707c1812d2782c8a718f81f6d30240c498f1aa5419f5fc22a318727a07e0e232c1538209743a97b9c01e5f4a679462ac2819d8

  • SSDEEP

    12288:DHKzTnUs8oF7lWrf4p0fM5kzzLsK8Qll6V:DqzTUvEjCfMiHYMoV

Score
10/10

Malware Config

Targets

    • Target

      5d93c67ddde2e5fdc00a4e5777aa37d9ea4639227c633d044fb467b210640d28.exe

    • Size

      386KB

    • MD5

      cfd2733ba128f49a373042a1a6c3fe19

    • SHA1

      5782fffc3d9e4d815fa0ec6315c5f237edfb9ae9

    • SHA256

      5d93c67ddde2e5fdc00a4e5777aa37d9ea4639227c633d044fb467b210640d28

    • SHA512

      be1a9fae4148cd6b567903f8fe707c1812d2782c8a718f81f6d30240c498f1aa5419f5fc22a318727a07e0e232c1538209743a97b9c01e5f4a679462ac2819d8

    • SSDEEP

      12288:DHKzTnUs8oF7lWrf4p0fM5kzzLsK8Qll6V:DqzTUvEjCfMiHYMoV

    Score
    10/10
    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks