Overview

overview

10

Static

static

10

Rhadamanthys.exe

windows7-x64

10

Rhadamanthys.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Rhadamanthys.bin

  • Size

    185KB

  • Sample

    241121-mftx4a1bja

  • MD5

    89ec4405e9b2cab987f2e4f7e4b1666e

  • SHA1

    ec48082347136444540c9b8ba4eabcfdc526868c

  • SHA256

    af04ee03d69a7962fa5350d0df00fafc4ae85a07dff32f99f0d8d63900a47466

  • SHA512

    6f95787d6eee37207a97dd5d0ed09d6d09409d7861630da9e932cee7bef31ae51c805d1b0a1d20e13293967a007bba4554def4e34fe4ac55d57b3d9e574f3cac

  • SSDEEP

    3072:6rtHTIN7WXsrbiUSAY4pf7JCIaxIJlShDGbm/5uDGWqB2l7:6ZzXcrjztp7JliNum/5

Score
10/10
rhadamanthysdiscoverystealer

Malware Config

Extracted

Family

rhadamanthys

C2

http://185.209.160.99/blob/top.mp4

Targets

    • Target

      Rhadamanthys.bin

    • Size

      185KB

    • MD5

      89ec4405e9b2cab987f2e4f7e4b1666e

    • SHA1

      ec48082347136444540c9b8ba4eabcfdc526868c

    • SHA256

      af04ee03d69a7962fa5350d0df00fafc4ae85a07dff32f99f0d8d63900a47466

    • SHA512

      6f95787d6eee37207a97dd5d0ed09d6d09409d7861630da9e932cee7bef31ae51c805d1b0a1d20e13293967a007bba4554def4e34fe4ac55d57b3d9e574f3cac

    • SSDEEP

      3072:6rtHTIN7WXsrbiUSAY4pf7JCIaxIJlShDGbm/5uDGWqB2l7:6ZzXcrjztp7JliNum/5

    Score
    10/10
    rhadamanthysdiscoverystealer

    • Detect rhadamanthys stealer shellcode

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Rhadamanthys family

      rhadamanthys
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks