rhadamanthys | 907ca2f09153e8b0cdb3399e1d3e0a09c989801f4d9365c55289e40289b20727 | Triage

Submit
Reports

Overview

overview

Static

static

1

907ca2f091...27.msg

windows7-x64

907ca2f091...27.msg

windows10-2004-x64

3

Sharing

General

Target

907ca2f09153e8b0cdb3399e1d3e0a09c989801f4d9365c55289e40289b20727
Size

115KB
Sample

240910-kc3dysvakk
MD5

588322ad41fc6e5aa24fdbb55410ff1b
SHA1

40d64f2b6f83d5d0decb18efe3dd6942ea6dff54
SHA256

907ca2f09153e8b0cdb3399e1d3e0a09c989801f4d9365c55289e40289b20727
SHA512

ee6f02269dc18921ffc51fcbf87396695dad9fa3ef2902000a80cdca56abb9cdcbb9733a2e595b3e25e887df63fd15d982765b6c2c36388c0feca808a95296c0
SSDEEP

1536:zmKV4x3C4b3pWgWaWyKjYtD3AtID2jfciM:zm44x3jbxK2D3AtID2jfci

Score

10^/10

rhadamanthys discovery stealer

Static task

static1

Behavioral task

behavioral1

Sample

907ca2f09153e8b0cdb3399e1d3e0a09c989801f4d9365c55289e40289b20727.msg

Resource

win7-20240708-en

rhadamanthys discovery stealer

windows7-x64

15 signatures

300 seconds

Behavioral task

behavioral2

Sample

907ca2f09153e8b0cdb3399e1d3e0a09c989801f4d9365c55289e40289b20727.msg

Resource

win10v2004-20240802-en

windows10-2004-x64

3 signatures

300 seconds

Malware Config

Extracted

Family

rhadamanthys

C2

https://198.135.48.191:3090/7cc6bd8a9e6893408/2pcj1pcg.6smnn

Targets

- Target
  
  907ca2f09153e8b0cdb3399e1d3e0a09c989801f4d9365c55289e40289b20727
- Size
  
  115KB
- MD5
  
  588322ad41fc6e5aa24fdbb55410ff1b
- SHA1
  
  40d64f2b6f83d5d0decb18efe3dd6942ea6dff54
- SHA256
  
  907ca2f09153e8b0cdb3399e1d3e0a09c989801f4d9365c55289e40289b20727
- SHA512
  
  ee6f02269dc18921ffc51fcbf87396695dad9fa3ef2902000a80cdca56abb9cdcbb9733a2e595b3e25e887df63fd15d982765b6c2c36388c0feca808a95296c0
- SSDEEP
  
  1536:zmKV4x3C4b3pWgWaWyKjYtD3AtID2jfciM:zm44x3jbxK2D3AtID2jfci
Score

10^/10

rhadamanthys discovery stealer
- Rhadamanthys
  Rhadamanthys is an info stealer written in C++ first seen in August 2022.
  stealer rhadamanthys
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

rhadamanthysdiscoverystealer

behavioral2

© 2018-2024

Terms | Privacy