Resubmissions

27-11-2024 10:03

241127-l3n5pavrhn 10

20-07-2023 11:52

230720-n169lagd28 3

General

  • Target

    rh_0.4.8.exe

  • Size

    448KB

  • MD5

    8a43884339e51a55ad7f0cb5d71b912f

  • SHA1

    cadda7edc707dab68c3ec404c73ded2e328edc71

  • SHA256

    87a307dd7ad1b4c5e7fd3ddf262a99742bb4e53d3be0c0187ad203e8fadfcd5e

  • SHA512

    af7ade13b4299570add1225d0d915ee0b2d22b56f433d83ebd6c307fbbd0c3c50d896b10ebff6819838ca234c28d422cb37ca3a3604f43121ce4657ea7f5ec55

  • SSDEEP

    6144:qlE8DIpjK28t4sL4Slp3z/pSZ+pDKpf9EkQbKxVK+PXItNOapG8RuzRiRh3Zc:SEpj7sLxv/cgu4VGn6OaM+ucj

Score
10/10

Malware Config

Extracted

Family

rhadamanthys

C2

https://185.17.0.221:3709/96da56a338969138/et9eonn5.pecba

Signatures

  • Rhadamanthys family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • rh_0.4.8.exe
    .exe windows:4 windows x86 arch:x86

    fd020041ed8eb76ffbdb414a8b3716f2


    Headers

    Imports

    Sections