Concrete signature match: Trojan - Appears legitimate but performs malicious actions for 32-bit Windows platform, family Rhadamanthys
This detection identifies the Rhadamanthys information-stealing trojan, a potent malware designed to exfiltrate sensitive data from compromised systems. Its primary goals include stealing cryptocurrency wallets, browser credentials, and other personal information. The !MTB suffix indicates this was identified through machine learning-based behavioral analysis rather than a static signature.
No specific strings found for this threat
a40c0293d30ce6afdb9d825ca751e2d53592c55a86c2859c8e60849cb52c4d72Immediately isolate the affected machine from the network. Use Windows Defender to quarantine and remove the threat, then perform a full system scan. Since this is an information stealer, reset passwords for all critical accounts (email, banking, etc.) that were used or stored on the device and enable multi-factor authentication.