Overview

overview

10

Static

static

1

Launcher.exe

windows7-x64

10

Launcher.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Deadly Beta (password 2121).rar

  • Size

    4.1MB

  • Sample

    240826-mb4xhaybnb

  • MD5

    fd43928e9192b49c74be9e3228831088

  • SHA1

    a4f310330abf5988eef1e69e1c7280df5bcee923

  • SHA256

    3e0faf2368d158b927fe8ddf8cc45c18465fd663545652dcf11812db0e039429

  • SHA512

    33d181f02812d7179c1e0bdd995bb0ee38bb3b008a908cac91dd18356b025c051f19bb72fb41803d06135cf6fe92b6f1b8af0c934a06601aed9d930ab990f963

  • SSDEEP

    98304:f3eCSqzMGzAv3DraKk9rszstKgoGz0jDtVJRb98FPD:fukyvi99rszst7l8tVJRc

Score
10/10
rhadamanthysdiscoverystealer

Malware Config

Extracted

Family

rhadamanthys

C2

https://144.76.133.166:8034/5502b8a765a7d7349/2exkmrnd.gl5ss

Targets

    • Target

      Launcher.exe

    • Size

      442KB

    • MD5

      32294ae4ad2063b44a4d31cad44ad9ff

    • SHA1

      24313fdc2cff34a0065b4643f40fe44ba4a2fbc1

    • SHA256

      bb6ece8edf1cab4336f7178b9e158edf9e8fc0b966ceefd157dc1f5d119f309f

    • SHA512

      e2449493a32a622b40bd06c05f709e065e1b3002ed0ff6b48c594eb226f4e807b9c65cc3bad4934bd984920001d02b52f357dd3d440b762ee63b44be10ece290

    • SSDEEP

      6144:1JidrNEDu9O0EfUJfnzAfe4JM4LG17vIxwzrv+job91QLNupN/REjITFpARZN4tQ:1odaaqU981gvQn0bMuCEFaR79swnhEO

    Score
    10/10
    rhadamanthysdiscoverystealer

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks