General
-
Target
prezi-desktop-6-26-0.exe.bin
-
Size
24.0MB
-
Sample
240617-t1sdbswbng
-
MD5
c1883a829c7cfafc5c50802a01f4b03b
-
SHA1
f803939b6f8048be5a98c60e33f01910206c8960
-
SHA256
64a49ff6862b2c924280d5e906bc36168112c85d9acc2eb778b72ea1d4c17895
-
SHA512
db502c418342d49c827e34659d0121ff9d9c0bb7ad7b7aadac3befdedaf6768e15aa90544937521453a4b67928ff54737995cb877dd5af3be3d2053773afbf2d
-
SSDEEP
98304:4wOKyyWVopdoc65D+BS/9jWCsDeTm+xvsoXRpGCx5jCwkU8gfM6q/0EY0yg5jUDC:HYKUKsXRpNyUnfM6qlYIVU4a4
Static task
static1
Behavioral task
behavioral1
Sample
prezi-desktop-6-26-0.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
prezi-desktop-6-26-0.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
prezi-desktop-6-26-0.exe.bin
-
Size
24.0MB
-
MD5
c1883a829c7cfafc5c50802a01f4b03b
-
SHA1
f803939b6f8048be5a98c60e33f01910206c8960
-
SHA256
64a49ff6862b2c924280d5e906bc36168112c85d9acc2eb778b72ea1d4c17895
-
SHA512
db502c418342d49c827e34659d0121ff9d9c0bb7ad7b7aadac3befdedaf6768e15aa90544937521453a4b67928ff54737995cb877dd5af3be3d2053773afbf2d
-
SSDEEP
98304:4wOKyyWVopdoc65D+BS/9jWCsDeTm+xvsoXRpGCx5jCwkU8gfM6q/0EY0yg5jUDC:HYKUKsXRpNyUnfM6qlYIVU4a4
Score10/10-
Rhadamanthys
Rhadamanthys is an info stealer written in C++ first seen in August 2022.
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Suspicious use of SetThreadContext
-