General

  • Target

    Hurricane Loader 4.9.0.exe

  • Size

    365KB

  • Sample

    240405-s9qenage93

  • MD5

    bc5220a906b2d5fee8d2d9aabac1cdc1

  • SHA1

    e7efd6fc174eae355c4f39a6e5725f9260cdf987

  • SHA256

    cc2ffeb6c70c867fb87b8392cb1abf595cb73f8ff38d6595f98430400d688ebc

  • SHA512

    b73dbf7e8eef99814db519da1fd702f3cb82d51ba22e7981fa96dd4e925bbc4c6714e8e616436857d147bf47d2268593866eb86124e9bd98c118e342d19f50e8

  • SSDEEP

    6144:TLM2LZtM6Yi7slqUWE21n/uG+tyYTW1bxrimB4kIUZc5bmmw3P4+EZbVT2K:TPZvH71UWE21ncNMrimBI5Dw3vQ2

Score
10/10

Malware Config

Targets

    • Target

      Hurricane Loader 4.9.0.exe

    • Size

      365KB

    • MD5

      bc5220a906b2d5fee8d2d9aabac1cdc1

    • SHA1

      e7efd6fc174eae355c4f39a6e5725f9260cdf987

    • SHA256

      cc2ffeb6c70c867fb87b8392cb1abf595cb73f8ff38d6595f98430400d688ebc

    • SHA512

      b73dbf7e8eef99814db519da1fd702f3cb82d51ba22e7981fa96dd4e925bbc4c6714e8e616436857d147bf47d2268593866eb86124e9bd98c118e342d19f50e8

    • SSDEEP

      6144:TLM2LZtM6Yi7slqUWE21n/uG+tyYTW1bxrimB4kIUZc5bmmw3P4+EZbVT2K:TPZvH71UWE21ncNMrimBI5Dw3vQ2

    Score
    10/10
    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks