General
-
Target
6586cb8766c14a87330bf6c79a7cbd7cbff3ca9da63574a9c348645117d08f14
-
Size
938KB
-
Sample
240418-2mxd5ahh9s
-
MD5
9e64b65535e29ec152642d8bdcb22974
-
SHA1
5431aa7526ba193c0a92afffe2537bc54f51a0ba
-
SHA256
6586cb8766c14a87330bf6c79a7cbd7cbff3ca9da63574a9c348645117d08f14
-
SHA512
f895c62431502fa92d36b5e0cb929b4957ca41f9253dadecd6a06153dc566e12a5d835a162f6aeb0e8ea1eb1fb9c65ab716f7c43faca0672aff37900c56b156e
-
SSDEEP
24576:cbSLx7bBqTC9oA414OYDsSyMZblh50gjuQk47blB7uFujRVeYr4c:GS79qK4cDs6q7QX7bl1u6LzMc
Static task
static1
Behavioral task
behavioral1
Sample
6586cb8766c14a87330bf6c79a7cbd7cbff3ca9da63574a9c348645117d08f14.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
6586cb8766c14a87330bf6c79a7cbd7cbff3ca9da63574a9c348645117d08f14.exe
Resource
win10-20240404-en
Malware Config
Targets
-
-
Target
6586cb8766c14a87330bf6c79a7cbd7cbff3ca9da63574a9c348645117d08f14
-
Size
938KB
-
MD5
9e64b65535e29ec152642d8bdcb22974
-
SHA1
5431aa7526ba193c0a92afffe2537bc54f51a0ba
-
SHA256
6586cb8766c14a87330bf6c79a7cbd7cbff3ca9da63574a9c348645117d08f14
-
SHA512
f895c62431502fa92d36b5e0cb929b4957ca41f9253dadecd6a06153dc566e12a5d835a162f6aeb0e8ea1eb1fb9c65ab716f7c43faca0672aff37900c56b156e
-
SSDEEP
24576:cbSLx7bBqTC9oA414OYDsSyMZblh50gjuQk47blB7uFujRVeYr4c:GS79qK4cDs6q7QX7bl1u6LzMc
Score10/10-
Detects DLL dropped by Raspberry Robin.
Raspberry Robin.
-
Rhadamanthys
Rhadamanthys is an info stealer written in C++ first seen in August 2022.
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Executes dropped EXE
-
Loads dropped DLL
-