Overview

overview

10

Static

static

3

2025-04-12...id.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-04-12_b8552b573a8f0fc48aad052856347280_elex_icedid

  • Size

    3.5MB

  • Sample

    250412-zh5hts1vey

  • MD5

    b8552b573a8f0fc48aad052856347280

  • SHA1

    9a4239ffc7533672362b3d832e2ca0a578821a6a

  • SHA256

    8beb4fe88ebacd1846a7b9b153b61e61efcb153c9140c433b6907efda18e965a

  • SHA512

    94f1df49723b95a719c4830b27947352502470b7d8666654b98eff41335aaddd68faa94f3e27561a742d621bf0e7b276b6027038e4145b51081844d4a4de3f19

  • SSDEEP

    49152:CHBVPVP2ym8r2JdVTWRh1/6/R1I9AihZZ7WEqnXrtRI93iS5TChmqrjNZE3gQxjN:ERAMBChm+jPE35ENoMcUPBjU

Score
10/10
rhadamanthysdiscoverystealer

Malware Config

Targets

    • Target

      2025-04-12_b8552b573a8f0fc48aad052856347280_elex_icedid

    • Size

      3.5MB

    • MD5

      b8552b573a8f0fc48aad052856347280

    • SHA1

      9a4239ffc7533672362b3d832e2ca0a578821a6a

    • SHA256

      8beb4fe88ebacd1846a7b9b153b61e61efcb153c9140c433b6907efda18e965a

    • SHA512

      94f1df49723b95a719c4830b27947352502470b7d8666654b98eff41335aaddd68faa94f3e27561a742d621bf0e7b276b6027038e4145b51081844d4a4de3f19

    • SSDEEP

      49152:CHBVPVP2ym8r2JdVTWRh1/6/R1I9AihZZ7WEqnXrtRI93iS5TChmqrjNZE3gQxjN:ERAMBChm+jPE35ENoMcUPBjU

    Score
    10/10
    rhadamanthysdiscoverystealer

    • Detects Rhadamanthys payload

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Rhadamanthys family

      rhadamanthys

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    behavioral1

MITRE ATT&CK Enterprise v16

Tasks