General

  • Target

    b3996a786b0b8a559f726c5dcabb7faf50b1940f96ee8b72445c23348a13c67e

  • Size

    78KB

  • Sample

    221023-xjqd7abhc3

  • MD5

    a458a860cc198d046bd160f8dce82e13

  • SHA1

    98b3e2bb8224e751135e9c2b74ed8a7f428cd66a

  • SHA256

    b3996a786b0b8a559f726c5dcabb7faf50b1940f96ee8b72445c23348a13c67e

  • SHA512

    bb9f213bb110615733628807537616bba34fb9895b3363516b97396a126942f003fe69a0808bcef7a410e58bba81430183b33187f292b0659377f39bb92d3891

  • SSDEEP

    1536:8i5jSNpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQtM699/0C19e:55jS7JywQjDgTLopLwdCFJzv9/e

Malware Config

Targets

    • Target

      b3996a786b0b8a559f726c5dcabb7faf50b1940f96ee8b72445c23348a13c67e

    • Size

      78KB

    • MD5

      a458a860cc198d046bd160f8dce82e13

    • SHA1

      98b3e2bb8224e751135e9c2b74ed8a7f428cd66a

    • SHA256

      b3996a786b0b8a559f726c5dcabb7faf50b1940f96ee8b72445c23348a13c67e

    • SHA512

      bb9f213bb110615733628807537616bba34fb9895b3363516b97396a126942f003fe69a0808bcef7a410e58bba81430183b33187f292b0659377f39bb92d3891

    • SSDEEP

      1536:8i5jSNpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQtM699/0C19e:55jS7JywQjDgTLopLwdCFJzv9/e

    • MetamorpherRAT

      Metamorpherrat is a hacking tool that has been around for a while since 2013.

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

MITRE ATT&CK Matrix ATT&CK v6

Execution

Scripting

1
T1064

Defense Evasion

Scripting

1
T1064

Discovery

System Information Discovery

3
T1082

Query Registry

2
T1012

Tasks