Overview

overview

10

Static

static

3

4.exe

windows7-x64

10

4.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4.exe

  • Size

    16.6MB

  • Sample

    250205-hyxpgsxlcm

  • MD5

    183340a7b70e0fb43a85dd9095f6e13c

  • SHA1

    62e5b713222e1d94e016dc8d7506e397e3c537e2

  • SHA256

    581bba68668e906baa8eb38b80ccd3d333ca397ba7416edbd2a7c7579b5c88b7

  • SHA512

    23b75125a30fbed99e760c92a3b7cbdf2c2d81ce65ceea6938760291a626460ecddcbdb5cfe2b7f5c0ff17319b36b2e145fdb911d11a8181e49720a4e72d6606

  • SSDEEP

    393216:OyHMBEG81mFV2pTNDZ4no+NMc3tXtRdTcHn:DuEGqWVg1ezL3tXtRdTC

Score
10/10
rhadamanthysdiscoverystealer

Malware Config

Targets

    • Target

      4.exe

    • Size

      16.6MB

    • MD5

      183340a7b70e0fb43a85dd9095f6e13c

    • SHA1

      62e5b713222e1d94e016dc8d7506e397e3c537e2

    • SHA256

      581bba68668e906baa8eb38b80ccd3d333ca397ba7416edbd2a7c7579b5c88b7

    • SHA512

      23b75125a30fbed99e760c92a3b7cbdf2c2d81ce65ceea6938760291a626460ecddcbdb5cfe2b7f5c0ff17319b36b2e145fdb911d11a8181e49720a4e72d6606

    • SSDEEP

      393216:OyHMBEG81mFV2pTNDZ4no+NMc3tXtRdTcHn:DuEGqWVg1ezL3tXtRdTC

    Score
    10/10
    rhadamanthysdiscoverystealer

    • Detects Rhadamanthys payload

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Rhadamanthys family

      rhadamanthys

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks