General
-
Target
Skibidi Boilet Master.msc
-
Size
141KB
-
Sample
240818-p63c9sthng
-
MD5
e25027c2a3b9e45f0551604453e6f865
-
SHA1
cb2ca952b8d4a70f9c8cd00265a30d0411e5f5d5
-
SHA256
b13201957eec1248b3d91f2fd5a0b5d999c0c77644810f4aa28c9ecd0faf8828
-
SHA512
6b9febbce6c089c3a73a5ec16f59458121e4a8baf0bd243c470df8c5bedf7802b114792a6e0245378105001f76c048b8333b6e199c9840260feec7d69bcdcb52
-
SSDEEP
384:MUkHgIvDfCbiiNPyVIB7nstz5R0aDV5qF:wHPD6iiNPydzRVvqF
Malware Config
Targets
-
-
Target
Skibidi Boilet Master.msc
-
Size
141KB
-
MD5
e25027c2a3b9e45f0551604453e6f865
-
SHA1
cb2ca952b8d4a70f9c8cd00265a30d0411e5f5d5
-
SHA256
b13201957eec1248b3d91f2fd5a0b5d999c0c77644810f4aa28c9ecd0faf8828
-
SHA512
6b9febbce6c089c3a73a5ec16f59458121e4a8baf0bd243c470df8c5bedf7802b114792a6e0245378105001f76c048b8333b6e199c9840260feec7d69bcdcb52
-
SSDEEP
384:MUkHgIvDfCbiiNPyVIB7nstz5R0aDV5qF:wHPD6iiNPydzRVvqF
Score10/10-
Rhadamanthys
Rhadamanthys is an info stealer written in C++ first seen in August 2022.
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Blocklisted process makes network request
-
Command and Scripting Interpreter: PowerShell
Run Powershell and hide display window.
-
Executes dropped EXE
-