General

  • Target

    5e615221495fb040e68ca90042c5ce4aa01b684baccc647b4043c063c5e7f837

  • Size

    984KB

  • Sample

    240518-1rgzkaab43

  • MD5

    6aae6ec51bbc47669be80e5882088aee

  • SHA1

    e615cc8f763f2e253f0e1407c600b2f70c8b5982

  • SHA256

    5e615221495fb040e68ca90042c5ce4aa01b684baccc647b4043c063c5e7f837

  • SHA512

    0eb30a0701ec968d2be8cb97c302268d519cd81d4ebe1667406b280c807cfbe484da82be0fb5c9a33e526f995da4f4bf5d27d26105fbeb1db819ad778e6999b0

  • SSDEEP

    24576:mH8NAyNCGK4ylkhPzh6RkBYmy6MmVZqqD48GoS7NdbTykQx3sEMlCcmVR1/T:mHaCuylkhPzIRkBYwZq85GoePybcEECj

Score
10/10

Malware Config

Targets

    • Target

      5e615221495fb040e68ca90042c5ce4aa01b684baccc647b4043c063c5e7f837

    • Size

      984KB

    • MD5

      6aae6ec51bbc47669be80e5882088aee

    • SHA1

      e615cc8f763f2e253f0e1407c600b2f70c8b5982

    • SHA256

      5e615221495fb040e68ca90042c5ce4aa01b684baccc647b4043c063c5e7f837

    • SHA512

      0eb30a0701ec968d2be8cb97c302268d519cd81d4ebe1667406b280c807cfbe484da82be0fb5c9a33e526f995da4f4bf5d27d26105fbeb1db819ad778e6999b0

    • SSDEEP

      24576:mH8NAyNCGK4ylkhPzh6RkBYmy6MmVZqqD48GoS7NdbTykQx3sEMlCcmVR1/T:mHaCuylkhPzIRkBYwZq85GoePybcEECj

    Score
    10/10
    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks