metamorpherrat | 8acf8a241adb9b57f2fc336f6b2e3cc93376eb374da73350873b2aca5b36d36e | Triage

Sharing

General

Target

8acf8a241adb9b57f2fc336f6b2e3cc93376eb374da73350873b2aca5b36d36e
Size

78KB
Sample

221023-kdlslahdfn
MD5

9de5f6153622535b6cef04354364a3bc
SHA1

d2ca662e5cf9bb19490127d49ee872e8c51acfa2
SHA256

8acf8a241adb9b57f2fc336f6b2e3cc93376eb374da73350873b2aca5b36d36e
SHA512

c065cf0f511ef2e2fcd96e6d82214d1fc2a935ac9af10cc15a9569d73a06afbb8ab1162cc63dbac88d801e62db861489d88fe314d518e16ec61f280b5a9b6b83
SSDEEP

1536:SPWtHFo6uaJtVpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQtB9/d1da:SPWtHFoI3DJywQjDgTLopLwdCFJzB9/0

Score

10^/10

metamorpherrat rat stealer trojan

Malware Config

Targets

- Target
  
  8acf8a241adb9b57f2fc336f6b2e3cc93376eb374da73350873b2aca5b36d36e
- Size
  
  78KB
- MD5
  
  9de5f6153622535b6cef04354364a3bc
- SHA1
  
  d2ca662e5cf9bb19490127d49ee872e8c51acfa2
- SHA256
  
  8acf8a241adb9b57f2fc336f6b2e3cc93376eb374da73350873b2aca5b36d36e
- SHA512
  
  c065cf0f511ef2e2fcd96e6d82214d1fc2a935ac9af10cc15a9569d73a06afbb8ab1162cc63dbac88d801e62db861489d88fe314d518e16ec61f280b5a9b6b83
- SSDEEP
  
  1536:SPWtHFo6uaJtVpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQtB9/d1da:SPWtHFoI3DJywQjDgTLopLwdCFJzB9/0
Score

10^/10

metamorpherrat rat stealer trojan
- MetamorpherRAT
  Metamorpherrat is a hacking tool that has been around for a while since 2013.
  trojan rat stealer metamorpherrat
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

metamorpherratratstealertrojan

behavioral2

metamorpherratratstealertrojan