Overview

overview

10

Static

static

3

f3cecb1045...5c.exe

windows7-x64

10

f3cecb1045...5c.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f3cecb104527871238a34a24cd8dad012a2a435605193ed8f8d27087d2503d5c

  • Size

    5.9MB

  • Sample

    240808-frfraazdml

  • MD5

    cfb3626fc1ef7ad447d4c6a603d8ee93

  • SHA1

    52c14e0953ed22f7340aa2e7a503e85a0780f1e8

  • SHA256

    f3cecb104527871238a34a24cd8dad012a2a435605193ed8f8d27087d2503d5c

  • SHA512

    1bc502ce85a4dd74dd9e4fc0742ec2d61626535162095c4765782221fe09ac3d1f2b9b314829fcd81aa84add80616741988b5f942c93c6980beb733506d77a11

  • SSDEEP

    98304:SIqyrlEfrYvsggIauNNFoAgrS43doVFXMxGXdnxiHO3tyuSvK0xlBKmXe4w98L+c:HEDTgg7uHFoVrT3iVFtxiHO3kuGlEKMx

Score
10/10
rhadamanthysdiscoverystealer

Malware Config

Targets

    • Target

      f3cecb104527871238a34a24cd8dad012a2a435605193ed8f8d27087d2503d5c

    • Size

      5.9MB

    • MD5

      cfb3626fc1ef7ad447d4c6a603d8ee93

    • SHA1

      52c14e0953ed22f7340aa2e7a503e85a0780f1e8

    • SHA256

      f3cecb104527871238a34a24cd8dad012a2a435605193ed8f8d27087d2503d5c

    • SHA512

      1bc502ce85a4dd74dd9e4fc0742ec2d61626535162095c4765782221fe09ac3d1f2b9b314829fcd81aa84add80616741988b5f942c93c6980beb733506d77a11

    • SSDEEP

      98304:SIqyrlEfrYvsggIauNNFoAgrS43doVFXMxGXdnxiHO3tyuSvK0xlBKmXe4w98L+c:HEDTgg7uHFoVrT3iVFtxiHO3kuGlEKMx

    Score
    10/10
    rhadamanthysdiscoverystealer

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks