General
-
Target
2024-06-19_35a4093aa84921340790cd2cca6828d0_magniber_revil
-
Size
70.9MB
-
Sample
240619-fhlk6syelr
-
MD5
35a4093aa84921340790cd2cca6828d0
-
SHA1
ffab58b5e16e2bbfe75287b14f329c9bbd4fa790
-
SHA256
1652f43525a84c6f33fd69ba45433bdf24bd90deb283dfcf326077fdaa8b8154
-
SHA512
1d7378005d099fc38c1cdf3c6b75e153e5ef442509bc92cc01b5f4fe696ce971d73b72b45ad7821f400c9377a29854760b67d46364b3e432c853eba4868ade49
-
SSDEEP
1572864:cdABF0N/9dWHC2iHtBkb6DhFXrFHYi3qw+ietvQ19oDL9S:M9TzSI
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-19_35a4093aa84921340790cd2cca6828d0_magniber_revil.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-06-19_35a4093aa84921340790cd2cca6828d0_magniber_revil.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-19_35a4093aa84921340790cd2cca6828d0_magniber_revil
-
Size
70.9MB
-
MD5
35a4093aa84921340790cd2cca6828d0
-
SHA1
ffab58b5e16e2bbfe75287b14f329c9bbd4fa790
-
SHA256
1652f43525a84c6f33fd69ba45433bdf24bd90deb283dfcf326077fdaa8b8154
-
SHA512
1d7378005d099fc38c1cdf3c6b75e153e5ef442509bc92cc01b5f4fe696ce971d73b72b45ad7821f400c9377a29854760b67d46364b3e432c853eba4868ade49
-
SSDEEP
1572864:cdABF0N/9dWHC2iHtBkb6DhFXrFHYi3qw+ietvQ19oDL9S:M9TzSI
Score10/10-
Rhadamanthys
Rhadamanthys is an info stealer written in C++ first seen in August 2022.
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-