General

  • Target

    2025-07-04_83125bd65ae85781b75c203c62f799af_elex_gcleaner_rhadamanthys_smoke-loader_stop_tofsee

  • Size

    1.0MB

  • Sample

    250704-nnxvds11f1

  • MD5

    83125bd65ae85781b75c203c62f799af

  • SHA1

    452292b9f6050ad7c4630719ec031a2b53fbde10

  • SHA256

    b7cc8f9e667722093cd85e22696d644d78c2d448f1bc858c3605c513474a3a67

  • SHA512

    063c935177b5dd88a3bc3fc434731d2746fe6d596163af186be009d185d305c188dadf95109fc16593ceb7b48316374dc678bea54707ba2fef6f8e7cc50b1ada

  • SSDEEP

    24576:dx5IWWnLNTeoR23RY4TrD1/sBHxCu0iF4pOaCgi5CICjNwa:BI5nLNTN2BY4TrD1/sTCuVuOaCgi5CIQ

Malware Config

Targets

    • Target

      2025-07-04_83125bd65ae85781b75c203c62f799af_elex_gcleaner_rhadamanthys_smoke-loader_stop_tofsee

    • Size

      1.0MB

    • MD5

      83125bd65ae85781b75c203c62f799af

    • SHA1

      452292b9f6050ad7c4630719ec031a2b53fbde10

    • SHA256

      b7cc8f9e667722093cd85e22696d644d78c2d448f1bc858c3605c513474a3a67

    • SHA512

      063c935177b5dd88a3bc3fc434731d2746fe6d596163af186be009d185d305c188dadf95109fc16593ceb7b48316374dc678bea54707ba2fef6f8e7cc50b1ada

    • SSDEEP

      24576:dx5IWWnLNTeoR23RY4TrD1/sBHxCu0iF4pOaCgi5CICjNwa:BI5nLNTN2BY4TrD1/sTCuVuOaCgi5CIQ

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v16

Tasks