metamorpherrat | 215b836d76bb0e98941048fc0472e1e340b29ed5929d244c8ab635a483fe95ef | Triage

Sharing

General

Target

215b836d76bb0e98941048fc0472e1e340b29ed5929d244c8ab635a483fe95ef
Size

78KB
Sample

220326-ycm6xsdadn
MD5

037da40fc5f35627c436308d900d56bb
SHA1

b3154def9360670c5107a6c401b71b7f6b02d831
SHA256

215b836d76bb0e98941048fc0472e1e340b29ed5929d244c8ab635a483fe95ef
SHA512

b12ba4253a1d100302e606feb81d6157461fb0b280853f8119c402d64210d56b211f0055204216d47e7500626ca0da5c91d113c91b5074f7129ccc8ac8341f2f

Score

10^/10

metamorpherrat rat stealer suricata trojan

Malware Config

Targets

- Target
  
  215b836d76bb0e98941048fc0472e1e340b29ed5929d244c8ab635a483fe95ef
- Size
  
  78KB
- MD5
  
  037da40fc5f35627c436308d900d56bb
- SHA1
  
  b3154def9360670c5107a6c401b71b7f6b02d831
- SHA256
  
  215b836d76bb0e98941048fc0472e1e340b29ed5929d244c8ab635a483fe95ef
- SHA512
  
  b12ba4253a1d100302e606feb81d6157461fb0b280853f8119c402d64210d56b211f0055204216d47e7500626ca0da5c91d113c91b5074f7129ccc8ac8341f2f
Score

10^/10

metamorpherrat rat stealer suricata trojan
- MetamorpherRAT
  Metamorpherrat is a hacking tool that has been around for a while since 2013.
  trojan rat stealer metamorpherrat
- suricata: ET MALWARE Possible Compromised Host AnubisNetworks Sinkhole Cookie Value Snkz
  suricata: ET MALWARE Possible Compromised Host AnubisNetworks Sinkhole Cookie Value Snkz
  suricata
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

metamorpherratratstealersuricatatrojan

behavioral2