The Reveal Platform
Intel Name: Operation endgame quakes rhadamanthys
Date of Scan: November 14, 2025
Impact: High
Summary: Rhadamanthys malware has evolved considerably, showcasing continuous advancements in cybercriminal tactics. Initially discovered in 2022, it began as a sophisticated information stealer targeting credentials, financial data, and system details. Its rapid rise in underground forums was driven by its strong capabilities and high level of customization. Over time, updates enhanced its evasion techniques and improved adaptability against security controls. These updates introduced obfuscation, anti-analysis methods, and multi-stage payloads designed to evade detection. The malware also became increasingly modular, enabling threat actors to tailor its functions to specific campaigns or targets.
