rhadamanthys | b5bc03acaeb80ef98945cc3e0e7726276feb68e05b4e4811727b6d500cd67e37 | Triage

Sharing

General

Target

b5bc03acaeb80ef98945cc3e0e7726276feb68e05b4e4811727b6d500cd67e37
Size

423KB
Sample

240820-wad45avend
MD5

8d8f3608a9f99524d1c582a962e2ea2b
SHA1

7c6a3e130fb112ff35bb34a278ee43cf173ed513
SHA256

b5bc03acaeb80ef98945cc3e0e7726276feb68e05b4e4811727b6d500cd67e37
SHA512

57e3fad35098642d5a5765fe7333ebaf7d6322f714dc328ef07361b970b1e02aea5b414b50dc53ac4c4bf9325142f5c6b36072885d9e767c61fbb1d828f0c722
SSDEEP

6144:YAYM3ZEWqf/qwPF7LR5W8ZJ74zmRiOFBbMh9q/JSJ3ChNeK06iiRzmi0F9:YWBqf/qq3R5W8ZB4zmRzbacsViRUF9

Score

10^/10

rhadamanthys discovery stealer

Malware Config

Extracted

Family

rhadamanthys

C2

https://147.45.44.155/9fcc2685c3ccafd/nmlqhjlr.vn4xq

Targets

- Target
  
  b5bc03acaeb80ef98945cc3e0e7726276feb68e05b4e4811727b6d500cd67e37
- Size
  
  423KB
- MD5
  
  8d8f3608a9f99524d1c582a962e2ea2b
- SHA1
  
  7c6a3e130fb112ff35bb34a278ee43cf173ed513
- SHA256
  
  b5bc03acaeb80ef98945cc3e0e7726276feb68e05b4e4811727b6d500cd67e37
- SHA512
  
  57e3fad35098642d5a5765fe7333ebaf7d6322f714dc328ef07361b970b1e02aea5b414b50dc53ac4c4bf9325142f5c6b36072885d9e767c61fbb1d828f0c722
- SSDEEP
  
  6144:YAYM3ZEWqf/qwPF7LR5W8ZJ74zmRiOFBbMh9q/JSJ3ChNeK06iiRzmi0F9:YWBqf/qq3R5W8ZB4zmRzbacsViRUF9
Score

10^/10

rhadamanthys discovery stealer
- Rhadamanthys
  Rhadamanthys is an info stealer written in C++ first seen in August 2022.
  stealer rhadamanthys
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

rhadamanthysdiscoverystealer

behavioral2

rhadamanthysdiscoverystealer