rhadamanthys | 583e9e8c483eb7a9569c81d687e6c7612d11e40e0b8b82fbf7ce6d287ba7e21c | Triage

Sharing

General

Target

583e9e8c483eb7a9569c81d687e6c7612d11e40e0b8b82fbf7ce6d287ba7e21c.exe
Size

1.4MB
Sample

241001-szekeawhqm
MD5

b0513fbdc97f2ee3095e5c80657b9082
SHA1

bd07844bb7f2790f312fc9a7ce6e7b7cc8eea484
SHA256

583e9e8c483eb7a9569c81d687e6c7612d11e40e0b8b82fbf7ce6d287ba7e21c
SHA512

c8863238a8479b535295877a4867c4f0dd1f29601314bc60c7980968de957d07ed622678fcd683a4aeb30e7db1345823282a3c7970760d349c54d5803575f520
SSDEEP

24576:wtnmIPenb2U7vqmfwrvpFpEO5cJ8P/XSD9+n1kDA+5gazXuc/0xHV:2mP2U7vq42p4+c2369W1kDA+5gaf/0T

Score

10^/10

rhadamanthys discovery stealer

Malware Config

Targets

- Target
  
  583e9e8c483eb7a9569c81d687e6c7612d11e40e0b8b82fbf7ce6d287ba7e21c.exe
- Size
  
  1.4MB
- MD5
  
  b0513fbdc97f2ee3095e5c80657b9082
- SHA1
  
  bd07844bb7f2790f312fc9a7ce6e7b7cc8eea484
- SHA256
  
  583e9e8c483eb7a9569c81d687e6c7612d11e40e0b8b82fbf7ce6d287ba7e21c
- SHA512
  
  c8863238a8479b535295877a4867c4f0dd1f29601314bc60c7980968de957d07ed622678fcd683a4aeb30e7db1345823282a3c7970760d349c54d5803575f520
- SSDEEP
  
  24576:wtnmIPenb2U7vqmfwrvpFpEO5cJ8P/XSD9+n1kDA+5gazXuc/0xHV:2mP2U7vq42p4+c2369W1kDA+5gaf/0T
Score

10^/10

rhadamanthys discovery stealer
- Rhadamanthys
  Rhadamanthys is an info stealer written in C++ first seen in August 2022.
  stealer rhadamanthys
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

rhadamanthysdiscoverystealer

behavioral2

rhadamanthysdiscoverystealer