General
-
Target
0908aa405072f2c3e8dbb55f4b684030_NeikiAnalytics
-
Size
78KB
-
Sample
240514-ww4lxahf4w
-
MD5
0908aa405072f2c3e8dbb55f4b684030
-
SHA1
f35e507803ff70397a6b4417ed6f69cc94b7372b
-
SHA256
5d84c8f6c095de440c126e97159013dd950c1fc8b045d53725b87e9e08b55010
-
SHA512
59b219a58e4b5aa09994a1e83be6f59ef8220908c3d8f2e33f0f314fa4d80ac00cc8fe29827028436fb01112ce83e60caad6c93857f87aeded6c2de050ac80b9
-
SSDEEP
1536:t58Vdy0MochZDsC8Kl/99Z242UdIAkn3jKZPjoYaoQtC6i9/F143:t58An7N041Qqhg69/a
Malware Config
Targets
-
-
Target
0908aa405072f2c3e8dbb55f4b684030_NeikiAnalytics
-
Size
78KB
-
MD5
0908aa405072f2c3e8dbb55f4b684030
-
SHA1
f35e507803ff70397a6b4417ed6f69cc94b7372b
-
SHA256
5d84c8f6c095de440c126e97159013dd950c1fc8b045d53725b87e9e08b55010
-
SHA512
59b219a58e4b5aa09994a1e83be6f59ef8220908c3d8f2e33f0f314fa4d80ac00cc8fe29827028436fb01112ce83e60caad6c93857f87aeded6c2de050ac80b9
-
SSDEEP
1536:t58Vdy0MochZDsC8Kl/99Z242UdIAkn3jKZPjoYaoQtC6i9/F143:t58An7N041Qqhg69/a
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-