Overview

overview

10

Static

static

3

prezi-desk...-0.exe

windows7-x64

10

prezi-desk...-0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    prezi-desktop-6-26-0.exe.bin

  • Size

    24.0MB

  • Sample

    240617-t1sdbswbng

  • MD5

    c1883a829c7cfafc5c50802a01f4b03b

  • SHA1

    f803939b6f8048be5a98c60e33f01910206c8960

  • SHA256

    64a49ff6862b2c924280d5e906bc36168112c85d9acc2eb778b72ea1d4c17895

  • SHA512

    db502c418342d49c827e34659d0121ff9d9c0bb7ad7b7aadac3befdedaf6768e15aa90544937521453a4b67928ff54737995cb877dd5af3be3d2053773afbf2d

  • SSDEEP

    98304:4wOKyyWVopdoc65D+BS/9jWCsDeTm+xvsoXRpGCx5jCwkU8gfM6q/0EY0yg5jUDC:HYKUKsXRpNyUnfM6qlYIVU4a4

Score
10/10
rhadamanthysstealer

Malware Config

Targets

    • Target

      prezi-desktop-6-26-0.exe.bin

    • Size

      24.0MB

    • MD5

      c1883a829c7cfafc5c50802a01f4b03b

    • SHA1

      f803939b6f8048be5a98c60e33f01910206c8960

    • SHA256

      64a49ff6862b2c924280d5e906bc36168112c85d9acc2eb778b72ea1d4c17895

    • SHA512

      db502c418342d49c827e34659d0121ff9d9c0bb7ad7b7aadac3befdedaf6768e15aa90544937521453a4b67928ff54737995cb877dd5af3be3d2053773afbf2d

    • SSDEEP

      98304:4wOKyyWVopdoc65D+BS/9jWCsDeTm+xvsoXRpGCx5jCwkU8gfM6q/0EY0yg5jUDC:HYKUKsXRpNyUnfM6qlYIVU4a4

    Score
    10/10
    rhadamanthysstealer

    • Rhadamanthys

      Rhadamanthys is an info stealer written in C++ first seen in August 2022.

      stealerrhadamanthys

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks