hijackloader | b7615563fc08671d442b6f8102eeb61f5058f75821bac5f701385f7c123d7fa5 | Triage

Submit
Reports

Overview

overview

Static

static

Requiremen...rk.scr

windows11-21h2-x64

Sharing

General

Target

Requirements upwork.scr
Size

699.6MB
Sample

240604-e9c8fadh83
MD5

1cbf33e0f9964d14cc107236d8060972
SHA1

bd7052b3f20a83ed7ce837030d7aee6b1150781a
SHA256

b7615563fc08671d442b6f8102eeb61f5058f75821bac5f701385f7c123d7fa5
SHA512

1042f8ee6b23000d55082af3061a8559c266302d5a72eb35041d33a090ec4e70850f7d55df3c3463478d40d0a17f4a1834d9e72a59829041540898d6b4bba63b
SSDEEP

393216:fM07b4unYmNXdJu4LTYi7dRcogr6+7QJhrrXZEwCz:fNIunb9bJRRgrWXZEw0

Score

10^/10

hijackloader rhadamanthys stealer

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

Requirements upwork.scr

Resource

win11-20240426-en

rhadamanthys stealer

windows11-21h2-x64

21 signatures

150 seconds

Malware Config

Targets

- Target
  
  Requirements upwork.scr
- Size
  
  699.6MB
- MD5
  
  1cbf33e0f9964d14cc107236d8060972
- SHA1
  
  bd7052b3f20a83ed7ce837030d7aee6b1150781a
- SHA256
  
  b7615563fc08671d442b6f8102eeb61f5058f75821bac5f701385f7c123d7fa5
- SHA512
  
  1042f8ee6b23000d55082af3061a8559c266302d5a72eb35041d33a090ec4e70850f7d55df3c3463478d40d0a17f4a1834d9e72a59829041540898d6b4bba63b
- SSDEEP
  
  393216:fM07b4unYmNXdJu4LTYi7dRcogr6+7QJhrrXZEwCz:fNIunb9bJRRgrWXZEw0
Score

10^/10

rhadamanthys stealer
- Rhadamanthys
  Rhadamanthys is an info stealer written in C++ first seen in August 2022.
  stealer rhadamanthys
- Suspicious use of NtCreateUserProcessOtherParentProcess
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

rhadamanthysstealer

© 2018-2024

Terms | Privacy