Overview

overview

10

Static

static

3

2024090528...ys.exe

windows7-x64

10

2024090528...ys.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    202409052855efb98519df3078678d8ed96365e1magniberrevilrhadamanthys

  • Size

    70.4MB

  • Sample

    240905-tc28matfqq

  • MD5

    2855efb98519df3078678d8ed96365e1

  • SHA1

    b5d387a8445502781cf966b7b8fe97afb2206308

  • SHA256

    05073d3f8f92fdf1064d69dc0ade649099b6f23732f4241ede68541418c3a5a8

  • SHA512

    bc329d4bef86f990e0cfc5da6c859393fce6175703c0f17cdc4b862668f1e2d4583da386b3204b92dd8c596237bdb9a62180dd51274ce8faa92f4d0b39e4720e

  • SSDEEP

    1572864:LoxuVkox/ETpYcqn1GRa6CzAYhYbinNSMpZ5KcR8UqCIayPlDo:sMpova

Score
10/10
rhadamanthysdiscoverystealer

Malware Config

Targets

    • Target

      202409052855efb98519df3078678d8ed96365e1magniberrevilrhadamanthys

    • Size

      70.4MB

    • MD5

      2855efb98519df3078678d8ed96365e1

    • SHA1

      b5d387a8445502781cf966b7b8fe97afb2206308

    • SHA256

      05073d3f8f92fdf1064d69dc0ade649099b6f23732f4241ede68541418c3a5a8

    • SHA512

      bc329d4bef86f990e0cfc5da6c859393fce6175703c0f17cdc4b862668f1e2d4583da386b3204b92dd8c596237bdb9a62180dd51274ce8faa92f4d0b39e4720e

    • SSDEEP

      1572864:LoxuVkox/ETpYcqn1GRa6CzAYhYbinNSMpZ5KcR8UqCIayPlDo:sMpova

    Score
    10/10
    rhadamanthysdiscoverystealer

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks