Rhadamanthys: The “Everything Bagel” Infostealer

• Rhadamanthys is an advanced infostealer which debuted on the dark web in September of last year to a warm critical reception by cybercriminals.


• A maximalist approach to features: functionality is added for its own sake, never mind the effort required or expected payoff.


• Campaigns by default target countries indiscriminately, excluding the commonwealth of independent states. This is typical of this kind of malware.


• Multiple-stage loader/shellcode execution has been researched in prior publications and has made it difficult to …

advanced campaigns countries critical cybercriminals dark dark web default disassembly features information infostealer key loader logic malware own publications rhadamanthys september shellcode stage states stealing takeaways target web