rhadamanthys | 97cc46d4f3ed56b872bd8cd8a7f35a6a3128b898bb8a5b03c36c4f8d29f0f9cf | Triage

Submit
Reports

Overview

overview

Static

static

black.exe

windows10-2004-x64

Resubmissions

27-11-2024 10:03

241127-l3ldssvrhk 10

20-07-2023 00:44

230720-a3sx4abh74 10

Sharing

General

Target

black.exe
Size

444KB
Sample

241127-l3ldssvrhk
MD5

c3ec8ce62adc05301e89a5db1694d79d
SHA1

033a64fd7f407d319dd660e9f9ba49851b9229a1
SHA256

97cc46d4f3ed56b872bd8cd8a7f35a6a3128b898bb8a5b03c36c4f8d29f0f9cf
SHA512

cebaa16485bfd01081b727375a458f9a817a5295a157adffbf5ec4f76697caa8bc6d8f0de5909dab98f6948d085f82ebbab479bfb3d3c2a285b3f422139baf6d
SSDEEP

6144:IjKvnAzRPqkroWvcrTIhB1uA2dOJhhgWbMbitWGFNuldsfiy3NiGA:Ijzgk08oIuA6ahE+F0/y36

Score

10^/10

rhadamanthys discovery stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

black.exe

Resource

win10v2004-20241007-en

rhadamanthys discovery stealer

windows10-2004-x64

7 signatures

30 seconds

Malware Config

Extracted

Family

rhadamanthys

C2

https://195.3.223.214:5130/c008e75f3f6ebf29101c5c81/fond.api

Targets

- Target
  
  black.exe
- Size
  
  444KB
- MD5
  
  c3ec8ce62adc05301e89a5db1694d79d
- SHA1
  
  033a64fd7f407d319dd660e9f9ba49851b9229a1
- SHA256
  
  97cc46d4f3ed56b872bd8cd8a7f35a6a3128b898bb8a5b03c36c4f8d29f0f9cf
- SHA512
  
  cebaa16485bfd01081b727375a458f9a817a5295a157adffbf5ec4f76697caa8bc6d8f0de5909dab98f6948d085f82ebbab479bfb3d3c2a285b3f422139baf6d
- SSDEEP
  
  6144:IjKvnAzRPqkroWvcrTIhB1uA2dOJhhgWbMbitWGFNuldsfiy3NiGA:Ijzgk08oIuA6ahE+F0/y36
Score

10^/10

rhadamanthys discovery stealer
- Detect rhadamanthys stealer shellcode
- Rhadamanthys
  Rhadamanthys is an info stealer written in C++ first seen in August 2022.
  stealer rhadamanthys
- Rhadamanthys family
  rhadamanthys
- Suspicious use of NtCreateUserProcessOtherParentProcess
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

rhadamanthysdiscoverystealer

© 2018-2024

Terms | Privacy