rhadamanthys | c852149ce27260b27cc9088067fe162da0093f59a9659d1f86aa062f4223915d | Triage

Sharing

General

Target

7609a4fb8cfd6952fcd5c814697d48521969d238849ed093baffb04571838419.zip
Size

1.4MB
Sample

250211-wwnwfswjat
MD5

17675f6608a4628a4334e633e8dcacfd
SHA1

1bbefaf1681ce4e5052563b3271f2874799ad1b6
SHA256

c852149ce27260b27cc9088067fe162da0093f59a9659d1f86aa062f4223915d
SHA512

1c8a523023c5816bbbaddf3761ccc841f296ed12773a17e3e62f84bf2e0886130b40945b24d3fa0d4c9a867c058bdcff63da0293eb0ce1ed3aa5c7853233a674
SSDEEP

24576:NVXpPujHkGBi2ergPvp+YuK0V/eZrlIc4ofNASAEIQ2Jec5oYUtMde5IZXzUrP:NtN2eUPvpP0V/eZ3TfVY8ndt0e5WXzUL

Score

10^/10

rhadamanthys discovery stealer

Malware Config

Targets

- Target
  
  7609a4fb8cfd6952fcd5c814697d48521969d238849ed093baffb04571838419.exe
- Size
  
  3.5MB
- MD5
  
  7b26a25d7bf2be6fdc2810ba5f519b4a
- SHA1
  
  967f13ece757df4e6958f6a1b36a0f4b318c0adf
- SHA256
  
  7609a4fb8cfd6952fcd5c814697d48521969d238849ed093baffb04571838419
- SHA512
  
  16d060e1d5ddfec7362a56035f969084e2600ea236e08ed1406fcd72b24585ba75ed1cd9e09435755eeb0a835e27dc86a9d1e4200a8f9a00b47f03994d4eccce
- SSDEEP
  
  49152:VJ2wV+FziaAzOjCkh4Fg8eHTZmmI029l5QZEYijwTlHAYWOQSGn:6A+F42og8kTZu06XTV
Score

10^/10

rhadamanthys discovery stealer
- Detects Rhadamanthys payload
- Rhadamanthys
  Rhadamanthys is an info stealer written in C++ first seen in August 2022.
  stealer rhadamanthys
- Rhadamanthys family
  rhadamanthys
- Downloads MZ/PE file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

rhadamanthysdiscoverystealer