Overview

overview

10

Static

static

3

dcdb2e997e...79.dll

windows7-x64

10

dcdb2e997e...79.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dcdb2e997eb051341887266f248d90f10c440e201c777be28d96b8360407b579.dll

  • Size

    55.4MB

  • Sample

    250203-p35n8a1paz

  • MD5

    21fca1f9af63251def126c496b19cc95

  • SHA1

    bc7eb6e04c5284893d82c1fdd723cfd8ed663178

  • SHA256

    dcdb2e997eb051341887266f248d90f10c440e201c777be28d96b8360407b579

  • SHA512

    e973f994bad2804e862af55b4c52015fe7a058b166aef9a4a09bd756652978441a819657a3968ef4b0dfc34c6fb0c2a4fca5b26b212c269eab2f370c30766184

  • SSDEEP

    1572864:MYsjkeZwu3B4RHLqhzWZvbYF8WNLKUDBWkoIz:0IszW6xBl

Score
10/10
rhadamanthysdiscoverystealer

Malware Config

Targets

    • Target

      dcdb2e997eb051341887266f248d90f10c440e201c777be28d96b8360407b579.dll

    • Size

      55.4MB

    • MD5

      21fca1f9af63251def126c496b19cc95

    • SHA1

      bc7eb6e04c5284893d82c1fdd723cfd8ed663178

    • SHA256

      dcdb2e997eb051341887266f248d90f10c440e201c777be28d96b8360407b579

    • SHA512

      e973f994bad2804e862af55b4c52015fe7a058b166aef9a4a09bd756652978441a819657a3968ef4b0dfc34c6fb0c2a4fca5b26b212c269eab2f370c30766184

    • SSDEEP

      1572864:MYsjkeZwu3B4RHLqhzWZvbYF8WNLKUDBWkoIz:0IszW6xBl

    Score
    10/10
    rhadamanthysdiscoverystealer

    • Detects Rhadamanthys payload

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Rhadamanthys family

      rhadamanthys

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks