General
-
Target
c8c39b04a02db0b36522b2140431e1f4
-
Size
78KB
-
Sample
240314-q4byzade9y
-
MD5
c8c39b04a02db0b36522b2140431e1f4
-
SHA1
753dda71012b62b73520f46a14f2954757dbdf14
-
SHA256
50c670956851fa71827665bdcad699850351f7075e800c42043a16699f48492f
-
SHA512
c4ed0335b7a97e970f12bb43eebef368f5b7288b08ac5e2d4b16a59f63898e7af1b611b33dbdf0a26a6371b06a2751e6c2ba924e207f4f0d787055313c7d8497
-
SSDEEP
1536:cStHY6M3xXT0XRhyRjVf3znOJTv3lcUK/+dWzCP7oYTcSQtej9/T1qO:cStHYn3xSyRxvY3md+dWWZyej9/7
Malware Config
Targets
-
-
Target
c8c39b04a02db0b36522b2140431e1f4
-
Size
78KB
-
MD5
c8c39b04a02db0b36522b2140431e1f4
-
SHA1
753dda71012b62b73520f46a14f2954757dbdf14
-
SHA256
50c670956851fa71827665bdcad699850351f7075e800c42043a16699f48492f
-
SHA512
c4ed0335b7a97e970f12bb43eebef368f5b7288b08ac5e2d4b16a59f63898e7af1b611b33dbdf0a26a6371b06a2751e6c2ba924e207f4f0d787055313c7d8497
-
SSDEEP
1536:cStHY6M3xXT0XRhyRjVf3znOJTv3lcUK/+dWzCP7oYTcSQtej9/T1qO:cStHYn3xSyRxvY3md+dWWZyej9/7
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-