rhadamanthys | b1be23345dbd3740f9ef660fe23471ee12889cf341c12b1067a2edcac2f74fef | Triage

Submit
Reports

Overview

overview

Static

static

test.exe

windows10-2004-x64

Sharing

General

Target

test.bin
Size

437KB
Sample

241004-fcfsqsygnc
MD5

0cfc0309bcf83d589d9ebdb1a84fe2f1
SHA1

f6cd1d5e7390de8a24398a79209d1a8ce2726647
SHA256

b1be23345dbd3740f9ef660fe23471ee12889cf341c12b1067a2edcac2f74fef
SHA512

ca1a702bf8b46cf07ddf3aa89f8c96208093bfd2bb56b9d87db6fca3bda416bcad14262fbcb6e228763fd64a8d162422afa2010d14b723fd37f4479096ab0b40
SSDEEP

12288:BuZZani4FaYkizhRpfX54K+uiE8fZzhzJA:B+ZIi4Z95/54K+uiE8hd

Score

10^/10

rhadamanthys stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

test.exe

Resource

win10v2004-20240802-en

rhadamanthys stealer

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

rhadamanthys

C2

https://deadmunky.nl:3715/b607677f1d5be7bf651f2/anu9bil9.9ux15

Targets

- Target
  
  test.bin
- Size
  
  437KB
- MD5
  
  0cfc0309bcf83d589d9ebdb1a84fe2f1
- SHA1
  
  f6cd1d5e7390de8a24398a79209d1a8ce2726647
- SHA256
  
  b1be23345dbd3740f9ef660fe23471ee12889cf341c12b1067a2edcac2f74fef
- SHA512
  
  ca1a702bf8b46cf07ddf3aa89f8c96208093bfd2bb56b9d87db6fca3bda416bcad14262fbcb6e228763fd64a8d162422afa2010d14b723fd37f4479096ab0b40
- SSDEEP
  
  12288:BuZZani4FaYkizhRpfX54K+uiE8fZzhzJA:B+ZIi4Z95/54K+uiE8hd
Score

10^/10

rhadamanthys stealer
- Rhadamanthys
  Rhadamanthys is an info stealer written in C++ first seen in August 2022.
  stealer rhadamanthys
- Suspicious use of NtCreateUserProcessOtherParentProcess
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

rhadamanthysstealer

© 2018-2024

Terms | Privacy