rhadamanthys | c2a4d430930ebbb4fb9d2caa27f58b1ec548b24dc4f918dd952007802319555d | Triage

Sharing

General

Target

c2a4d430930ebbb4fb9d2caa27f58b1ec548b24dc4f918dd952007802319555d.exe
Size

4.6MB
Sample

250318-j35rbsxxat
MD5

012a3c9ab1f26757e70216f6657bdc90
SHA1

abf2f338a2a1c46284a1af0a6d6a9f52adf84479
SHA256

c2a4d430930ebbb4fb9d2caa27f58b1ec548b24dc4f918dd952007802319555d
SHA512

f957d8a884c3e5983a6e12ea50daeaa4df97e94d30a8d9fe6b10a6a8bbd46d4fa33cf2ef45dbaa9410a71ed1695f9bf2ffc614079bfaa9352a6ff50a85b5ea26
SSDEEP

98304:9KKEPqPqyOTbXNCd0e1aaLLmjsDaAPm8gSmoj9ghi1RebMIg9Cbk/VRuH:9PuqSdPsmjsDadojDIg9Cbk/V0

Score

10^/10

rhadamanthys discovery stealer

Malware Config

Extracted

Family

rhadamanthys

C2

https://45.61.137.165:2297/60e467a6b549721041a09/efv4104h.1i0da

Targets

- Target
  
  c2a4d430930ebbb4fb9d2caa27f58b1ec548b24dc4f918dd952007802319555d.exe
- Size
  
  4.6MB
- MD5
  
  012a3c9ab1f26757e70216f6657bdc90
- SHA1
  
  abf2f338a2a1c46284a1af0a6d6a9f52adf84479
- SHA256
  
  c2a4d430930ebbb4fb9d2caa27f58b1ec548b24dc4f918dd952007802319555d
- SHA512
  
  f957d8a884c3e5983a6e12ea50daeaa4df97e94d30a8d9fe6b10a6a8bbd46d4fa33cf2ef45dbaa9410a71ed1695f9bf2ffc614079bfaa9352a6ff50a85b5ea26
- SSDEEP
  
  98304:9KKEPqPqyOTbXNCd0e1aaLLmjsDaAPm8gSmoj9ghi1RebMIg9Cbk/VRuH:9PuqSdPsmjsDadojDIg9Cbk/V0
Score

10^/10

rhadamanthys discovery stealer
- Rhadamanthys
  Rhadamanthys is an info stealer written in C++ first seen in August 2022.
  stealer rhadamanthys
- Rhadamanthys family
  rhadamanthys
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

rhadamanthysdiscoverystealer

behavioral2

rhadamanthysdiscoverystealer