Overview

overview

10

Static

static

3

2024-06-17...er.exe

windows7-x64

10

2024-06-17...er.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-06-17_fb6ec588da60c54f47c5e48d3366e9c6_mafia_magniber

  • Size

    13.7MB

  • Sample

    240617-f5clsazhkj

  • MD5

    fb6ec588da60c54f47c5e48d3366e9c6

  • SHA1

    98f844c3ead82b459ec528f10beeea2627e05b21

  • SHA256

    ae382ff94d4b7cd0c69e340471f97d67f49d5e12e1d93cbb2ef8c81e5dfffbb2

  • SHA512

    103c3d85dcea3fb4963ec1d8e8f58eed4aca04e276217929ffa89fb4bc85db9052ac789dc7d9977db19000edd260af194e4ff023e84a0949d3296e1860e0041c

  • SSDEEP

    196608:68iq85xX6BQylJbueRpRb6J45lvvvBSzQItvYx9KPNEFTHhqhAYG:+PXmNLmzQKYvKPAaG

Score
10/10
rhadamanthysstealer

Malware Config

Targets

    • Target

      2024-06-17_fb6ec588da60c54f47c5e48d3366e9c6_mafia_magniber

    • Size

      13.7MB

    • MD5

      fb6ec588da60c54f47c5e48d3366e9c6

    • SHA1

      98f844c3ead82b459ec528f10beeea2627e05b21

    • SHA256

      ae382ff94d4b7cd0c69e340471f97d67f49d5e12e1d93cbb2ef8c81e5dfffbb2

    • SHA512

      103c3d85dcea3fb4963ec1d8e8f58eed4aca04e276217929ffa89fb4bc85db9052ac789dc7d9977db19000edd260af194e4ff023e84a0949d3296e1860e0041c

    • SSDEEP

      196608:68iq85xX6BQylJbueRpRb6J45lvvvBSzQItvYx9KPNEFTHhqhAYG:+PXmNLmzQKYvKPAaG

    Score
    10/10
    rhadamanthysstealer

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Suspicious use of NtCreateThreadExHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks