metamorpherrat | 9f8eb1be11c19acaba973dd67fb9d83842b6e6f0effd3a8701edaac0eddac324 | Triage

Sharing

General

Target

9f8eb1be11c19acaba973dd67fb9d83842b6e6f0effd3a8701edaac0eddac324
Size

78KB
Sample

220326-vtb87sbfhp
MD5

03f1f99a8897c3a58b172b404ff438d2
SHA1

029e529a137ac442ecd1798515d00e7f29e3f627
SHA256

9f8eb1be11c19acaba973dd67fb9d83842b6e6f0effd3a8701edaac0eddac324
SHA512

112871b3c531a808719cc3e578b2650dd16684e189c72f90edbfc4c2a00c3d01ed701de008daf1b67769a5bb699a394d58108c0e3996fae797bfa68052f5fffa

Score

10^/10

metamorpherrat rat stealer suricata trojan

Malware Config

Targets

- Target
  
  9f8eb1be11c19acaba973dd67fb9d83842b6e6f0effd3a8701edaac0eddac324
- Size
  
  78KB
- MD5
  
  03f1f99a8897c3a58b172b404ff438d2
- SHA1
  
  029e529a137ac442ecd1798515d00e7f29e3f627
- SHA256
  
  9f8eb1be11c19acaba973dd67fb9d83842b6e6f0effd3a8701edaac0eddac324
- SHA512
  
  112871b3c531a808719cc3e578b2650dd16684e189c72f90edbfc4c2a00c3d01ed701de008daf1b67769a5bb699a394d58108c0e3996fae797bfa68052f5fffa
Score

10^/10

metamorpherrat rat stealer suricata trojan
- MetamorpherRAT
  Metamorpherrat is a hacking tool that has been around for a while since 2013.
  trojan rat stealer metamorpherrat
- suricata: ET MALWARE Possible Compromised Host AnubisNetworks Sinkhole Cookie Value Snkz
  suricata: ET MALWARE Possible Compromised Host AnubisNetworks Sinkhole Cookie Value Snkz
  suricata
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

metamorpherratratstealersuricatatrojan

behavioral2