rhadamanthys | 60f7a8154bf2f9995b2e10836460d267251debdcedcf2bb2cbee918af1221eef | Triage

Submit
Reports

Overview

overview

Static

static

60f7a8154b...ef.exe

windows10-2004-x64

Resubmissions

27-11-2024 09:58

241127-lz1djsymhw 10

09-06-2023 14:54

230609-r94fvadc51 10

Sharing

General

Target

60f7a8154bf2f9995b2e10836460d267251debdcedcf2bb2cbee918af1221eef
Size

444KB
Sample

241127-lz1djsymhw
MD5

bee5fe7fa8e65983ff04a9e680a4e8c2
SHA1

5f42a9bdc2f4cce46cd5b61509bedd8f597d202d
SHA256

60f7a8154bf2f9995b2e10836460d267251debdcedcf2bb2cbee918af1221eef
SHA512

88b0077ba5e31984761db7a9490e0121d3e6458feaba992339d4011cfffd375ba7c3ca88569e12554c131ac61a2facf29c644d348ecf7c99e10720d4a92bce9b
SSDEEP

6144:IjKvnAzRPqkroWBcrTIhB1uA2dOJhhgWbMbitWGFNuldsfiy3NiGA:Ijzgk0GoIuA6ahE+F0/y36

Score

10^/10

rhadamanthys discovery stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

60f7a8154bf2f9995b2e10836460d267251debdcedcf2bb2cbee918af1221eef.exe

Resource

win10v2004-20241007-en

rhadamanthys discovery stealer

windows10-2004-x64

7 signatures

30 seconds

Malware Config

Extracted

Family

rhadamanthys

C2

https://179.43.162.23:8509/c29db42cd4cdbbd4077/favicon.png

Targets

- Target
  
  60f7a8154bf2f9995b2e10836460d267251debdcedcf2bb2cbee918af1221eef
- Size
  
  444KB
- MD5
  
  bee5fe7fa8e65983ff04a9e680a4e8c2
- SHA1
  
  5f42a9bdc2f4cce46cd5b61509bedd8f597d202d
- SHA256
  
  60f7a8154bf2f9995b2e10836460d267251debdcedcf2bb2cbee918af1221eef
- SHA512
  
  88b0077ba5e31984761db7a9490e0121d3e6458feaba992339d4011cfffd375ba7c3ca88569e12554c131ac61a2facf29c644d348ecf7c99e10720d4a92bce9b
- SSDEEP
  
  6144:IjKvnAzRPqkroWBcrTIhB1uA2dOJhhgWbMbitWGFNuldsfiy3NiGA:Ijzgk0GoIuA6ahE+F0/y36
Score

10^/10

rhadamanthys discovery stealer
- Detect rhadamanthys stealer shellcode
- Rhadamanthys
  Rhadamanthys is an info stealer written in C++ first seen in August 2022.
  stealer rhadamanthys
- Rhadamanthys family
  rhadamanthys
- Suspicious use of NtCreateUserProcessOtherParentProcess
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

rhadamanthysdiscoverystealer

© 2018-2025

Terms | Privacy