General
-
Target
2024-06-17_fb6ec588da60c54f47c5e48d3366e9c6_mafia_magniber
-
Size
13.7MB
-
Sample
240617-f5clsazhkj
-
MD5
fb6ec588da60c54f47c5e48d3366e9c6
-
SHA1
98f844c3ead82b459ec528f10beeea2627e05b21
-
SHA256
ae382ff94d4b7cd0c69e340471f97d67f49d5e12e1d93cbb2ef8c81e5dfffbb2
-
SHA512
103c3d85dcea3fb4963ec1d8e8f58eed4aca04e276217929ffa89fb4bc85db9052ac789dc7d9977db19000edd260af194e4ff023e84a0949d3296e1860e0041c
-
SSDEEP
196608:68iq85xX6BQylJbueRpRb6J45lvvvBSzQItvYx9KPNEFTHhqhAYG:+PXmNLmzQKYvKPAaG
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-17_fb6ec588da60c54f47c5e48d3366e9c6_mafia_magniber.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-06-17_fb6ec588da60c54f47c5e48d3366e9c6_mafia_magniber.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
2024-06-17_fb6ec588da60c54f47c5e48d3366e9c6_mafia_magniber
-
Size
13.7MB
-
MD5
fb6ec588da60c54f47c5e48d3366e9c6
-
SHA1
98f844c3ead82b459ec528f10beeea2627e05b21
-
SHA256
ae382ff94d4b7cd0c69e340471f97d67f49d5e12e1d93cbb2ef8c81e5dfffbb2
-
SHA512
103c3d85dcea3fb4963ec1d8e8f58eed4aca04e276217929ffa89fb4bc85db9052ac789dc7d9977db19000edd260af194e4ff023e84a0949d3296e1860e0041c
-
SSDEEP
196608:68iq85xX6BQylJbueRpRb6J45lvvvBSzQItvYx9KPNEFTHhqhAYG:+PXmNLmzQKYvKPAaG
Score10/10-
Rhadamanthys
Rhadamanthys is an info stealer written in C++ first seen in August 2022.
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Suspicious use of NtCreateThreadExHideFromDebugger
-