rhadamanthys | 7609a4fb8cfd6952fcd5c814697d48521969d238849ed093baffb04571838419 | Triage

Sharing

General

Target

7609a4fb8cfd6952fcd5c814697d48521969d238849ed093baffb04571838419.exe
Size

3.5MB
Sample

250211-qaf1ts1rem
MD5

7b26a25d7bf2be6fdc2810ba5f519b4a
SHA1

967f13ece757df4e6958f6a1b36a0f4b318c0adf
SHA256

7609a4fb8cfd6952fcd5c814697d48521969d238849ed093baffb04571838419
SHA512

16d060e1d5ddfec7362a56035f969084e2600ea236e08ed1406fcd72b24585ba75ed1cd9e09435755eeb0a835e27dc86a9d1e4200a8f9a00b47f03994d4eccce
SSDEEP

49152:VJ2wV+FziaAzOjCkh4Fg8eHTZmmI029l5QZEYijwTlHAYWOQSGn:6A+F42og8kTZu06XTV

Score

10^/10

rhadamanthys discovery stealer

Malware Config

Targets

- Target
  
  7609a4fb8cfd6952fcd5c814697d48521969d238849ed093baffb04571838419.exe
- Size
  
  3.5MB
- MD5
  
  7b26a25d7bf2be6fdc2810ba5f519b4a
- SHA1
  
  967f13ece757df4e6958f6a1b36a0f4b318c0adf
- SHA256
  
  7609a4fb8cfd6952fcd5c814697d48521969d238849ed093baffb04571838419
- SHA512
  
  16d060e1d5ddfec7362a56035f969084e2600ea236e08ed1406fcd72b24585ba75ed1cd9e09435755eeb0a835e27dc86a9d1e4200a8f9a00b47f03994d4eccce
- SSDEEP
  
  49152:VJ2wV+FziaAzOjCkh4Fg8eHTZmmI029l5QZEYijwTlHAYWOQSGn:6A+F42og8kTZu06XTV
Score

10^/10

rhadamanthys discovery stealer
- Detects Rhadamanthys payload
- Rhadamanthys
  Rhadamanthys is an info stealer written in C++ first seen in August 2022.
  stealer rhadamanthys
- Rhadamanthys family
  rhadamanthys
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

rhadamanthysdiscoverystealer