Overview

overview

10

Static

static

3

8c415f6e9e...46.exe

windows7-x64

10

8c415f6e9e...46.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8c415f6e9e4ddc4df9433b33035ee3c9750283cc9306cdf97d4f9b9df1036946.exe

  • Size

    2.2MB

  • Sample

    240710-wbp8sa1cml

  • MD5

    0234bff4bd4e6dd7a80d3fde4f12fc09

  • SHA1

    7fb0e3bc8c71759028b30c1b2a45362ccdb14fd8

  • SHA256

    8c415f6e9e4ddc4df9433b33035ee3c9750283cc9306cdf97d4f9b9df1036946

  • SHA512

    ee100be2cbdc3f3a87e0510958a63ff0d8f0346ddf24d724417bcacf443cc675a051ca0b8c2a8c3b4fd9dc5e443c18fdebb60a5967aa8a0f29a42a901bfd0b84

  • SSDEEP

    49152:ileMKip5GL0peV5i38S1y16Bxase11gPSBajGWtA2ZHALmem:dW9g16haIjGz2ZHHem

Score
10/10
rhadamanthysstealer

Malware Config

Targets

    • Target

      8c415f6e9e4ddc4df9433b33035ee3c9750283cc9306cdf97d4f9b9df1036946.exe

    • Size

      2.2MB

    • MD5

      0234bff4bd4e6dd7a80d3fde4f12fc09

    • SHA1

      7fb0e3bc8c71759028b30c1b2a45362ccdb14fd8

    • SHA256

      8c415f6e9e4ddc4df9433b33035ee3c9750283cc9306cdf97d4f9b9df1036946

    • SHA512

      ee100be2cbdc3f3a87e0510958a63ff0d8f0346ddf24d724417bcacf443cc675a051ca0b8c2a8c3b4fd9dc5e443c18fdebb60a5967aa8a0f29a42a901bfd0b84

    • SSDEEP

      49152:ileMKip5GL0peV5i38S1y16Bxase11gPSBajGWtA2ZHALmem:dW9g16haIjGz2ZHHem

    Score
    10/10
    rhadamanthysstealer

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks