Overview

overview

10

Static

static

3

8eb3f7a87e...53.dll

windows7-x64

10

8eb3f7a87e...53.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8eb3f7a87e9f33f64793dde4bbe4c63d97b600fdecc00cf77341abbe27d69553.dll

  • Size

    62.0MB

  • Sample

    250204-etvsjswpgm

  • MD5

    c878951a604018f259ac092ff2251a98

  • SHA1

    b5a1a4cd2b88ed67adcb6293e54c1b13953c6f19

  • SHA256

    8eb3f7a87e9f33f64793dde4bbe4c63d97b600fdecc00cf77341abbe27d69553

  • SHA512

    c827468238bea1de6fabcd46f45a62accdaba62d4f3506f4baba15b846d47fcd1a21134700639f55ee532a6b38fa769df0c12e5f568b49ab8d7e8a2628068a05

  • SSDEEP

    1572864:9YsjkeZwu3B4RHLqyzWZvbYF8WNLKUnBDUpG5FQ:vIfzW6xBK

Score
10/10
rhadamanthysdiscoverystealer

Malware Config

Targets

    • Target

      8eb3f7a87e9f33f64793dde4bbe4c63d97b600fdecc00cf77341abbe27d69553.dll

    • Size

      62.0MB

    • MD5

      c878951a604018f259ac092ff2251a98

    • SHA1

      b5a1a4cd2b88ed67adcb6293e54c1b13953c6f19

    • SHA256

      8eb3f7a87e9f33f64793dde4bbe4c63d97b600fdecc00cf77341abbe27d69553

    • SHA512

      c827468238bea1de6fabcd46f45a62accdaba62d4f3506f4baba15b846d47fcd1a21134700639f55ee532a6b38fa769df0c12e5f568b49ab8d7e8a2628068a05

    • SSDEEP

      1572864:9YsjkeZwu3B4RHLqyzWZvbYF8WNLKUnBDUpG5FQ:vIfzW6xBK

    Score
    10/10
    rhadamanthysdiscoverystealer

    • Detects Rhadamanthys payload

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Rhadamanthys family

      rhadamanthys

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks