User tags

Assigned on submission by the user, not by sandbox detections.

Threatview.io Proactive Hunter

General

  • Target

    sample5.exe

  • Size

    545KB

  • Sample

    240407-cme3eaah28

  • MD5

    c58456f1423e916bde295f230485c1cf

  • SHA1

    c6b4c47300e1371680cac2e39a8ce3dc2ada27f6

  • SHA256

    7956d6d4b29d847f69e99363771fbe91983f4311b407e13860a025ab20869d90

  • SHA512

    4dfbd795d70623294f75c97dae17fb8572671c3c5a947fa78ec87de4659d26a795b715302bd6afe92264628ef80dd1a423f3841079db0a070b6641bbd0057fb4

  • SSDEEP

    12288:xW1s0S5CXGPawnEf12i4pjq3vnSrV/L+hejV5uUNCl:xgS5T3Et2i4pjqf4V/L+AjXhCl

Score
10/10

Malware Config

Targets

    • Target

      sample5.exe

    • Size

      545KB

    • MD5

      c58456f1423e916bde295f230485c1cf

    • SHA1

      c6b4c47300e1371680cac2e39a8ce3dc2ada27f6

    • SHA256

      7956d6d4b29d847f69e99363771fbe91983f4311b407e13860a025ab20869d90

    • SHA512

      4dfbd795d70623294f75c97dae17fb8572671c3c5a947fa78ec87de4659d26a795b715302bd6afe92264628ef80dd1a423f3841079db0a070b6641bbd0057fb4

    • SSDEEP

      12288:xW1s0S5CXGPawnEf12i4pjq3vnSrV/L+hejV5uUNCl:xgS5T3Et2i4pjqf4V/L+AjXhCl

    Score
    10/10
    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

    • Suspicious use of NtCreateUserProcessOtherParentProcess

MITRE ATT&CK Matrix

Tasks