metamorpherrat | 8e79d317776b9f0e4809c152cc7b2f487108c04047cef94d9e0b14b5802ecc4b | Triage

Sharing

General

Target

8e79d317776b9f0e4809c152cc7b2f487108c04047cef94d9e0b14b5802ecc4b
Size

78KB
Sample

220326-x31n9schcr
MD5

03b88288d39348acbfa655bfa51cf10e
SHA1

9ef86de12a44fa537d672b3c1c2e2fb20b3e6910
SHA256

8e79d317776b9f0e4809c152cc7b2f487108c04047cef94d9e0b14b5802ecc4b
SHA512

62ff97b7293f3e0cc12b0eeecd60a658bf8057c7e0a619c3cd3c87ca6a676a77c503eded7c5bcae7edbd1951abff898e2953dae9dcef3c107a97a493c9204142

Score

10^/10

metamorpherrat rat stealer suricata trojan

Malware Config

Targets

- Target
  
  8e79d317776b9f0e4809c152cc7b2f487108c04047cef94d9e0b14b5802ecc4b
- Size
  
  78KB
- MD5
  
  03b88288d39348acbfa655bfa51cf10e
- SHA1
  
  9ef86de12a44fa537d672b3c1c2e2fb20b3e6910
- SHA256
  
  8e79d317776b9f0e4809c152cc7b2f487108c04047cef94d9e0b14b5802ecc4b
- SHA512
  
  62ff97b7293f3e0cc12b0eeecd60a658bf8057c7e0a619c3cd3c87ca6a676a77c503eded7c5bcae7edbd1951abff898e2953dae9dcef3c107a97a493c9204142
Score

10^/10

metamorpherrat rat stealer suricata trojan
- MetamorpherRAT
  Metamorpherrat is a hacking tool that has been around for a while since 2013.
  trojan rat stealer metamorpherrat
- suricata: ET MALWARE Possible Compromised Host AnubisNetworks Sinkhole Cookie Value Snkz
  suricata: ET MALWARE Possible Compromised Host AnubisNetworks Sinkhole Cookie Value Snkz
  suricata
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

metamorpherratratstealersuricatatrojan

behavioral2