chg [stealer]: Add Rhadamanthys

Signed-off-by: Jürgen Löhel <juergen.loehel@inlyse.com>
2023-03-08 21:45:39 -06:00 · 2023-03-08 21:45:39 -06:00 · 031a4c8030
parent 437d4a30e5
commit 031a4c8030
1 changed files with 14 additions and 1 deletions
--- a/clusters/stealer.json
+++ b/clusters/stealer.json
@ -196,7 +196,20 @@
      },
      "uuid": "7f95ebda-2c7b-49a4-ad57-bd5766a1f651",
      "value": "Album Stealer"
+    },
+    {
+      "description": "According to PCrisk, Rhadamanthys is a stealer-type malware, and as its name implies - it is designed to extract data from infected machines.",
+      "meta": {
+        "refs": [
+          "https://elis531989.medium.com/dancing-with-shellcodes-analyzing-rhadamanthys-stealer-3c4986966a88",
+          "https://blog.cyble.com/2023/01/12/rhadamanthys-new-stealer-spreading-through-google-ads/",
+          "https://www.malware-traffic-analysis.net/2023/01/03/index.html",
+          "https://threatmon.io/rhadamanthys-stealer-analysis-threatmon/"
+        ]
+      },
+      "uuid": "9eb2a417-2bb6-496c-816b-bccb3f3074f6",
+      "value": "Rhadamanthys"
    }
  ],
-  "version": 11
+  "version": 12
 }