General
-
Target
fdd64fcdc03090fd26cf13890fb18a6881e8c2d5c85ae531bdb14eceb82c02cb
-
Size
78KB
-
Sample
240702-ggc33ssemn
-
MD5
0019b078537008226345cca3dfafdde4
-
SHA1
0de6f5d704b493954b00997988da472c39b872bb
-
SHA256
fdd64fcdc03090fd26cf13890fb18a6881e8c2d5c85ae531bdb14eceb82c02cb
-
SHA512
b22c5188bcc9dabb3d0758b379d91901d1eb04b5d0af5760ded2d7e0d98e0f4d58a5c4d273d48556f02e0247b065d53ad0bed560cbb69e549919a2b0a9ff8adf
-
SSDEEP
1536:dVy5jSGXT0XRhyRjVf3znOJTv3lcUK/+dWzCP7oYTcSQt96O9/71BT:Dy5jSOSyRxvY3md+dWWZy19/v
Malware Config
Targets
-
-
Target
fdd64fcdc03090fd26cf13890fb18a6881e8c2d5c85ae531bdb14eceb82c02cb
-
Size
78KB
-
MD5
0019b078537008226345cca3dfafdde4
-
SHA1
0de6f5d704b493954b00997988da472c39b872bb
-
SHA256
fdd64fcdc03090fd26cf13890fb18a6881e8c2d5c85ae531bdb14eceb82c02cb
-
SHA512
b22c5188bcc9dabb3d0758b379d91901d1eb04b5d0af5760ded2d7e0d98e0f4d58a5c4d273d48556f02e0247b065d53ad0bed560cbb69e549919a2b0a9ff8adf
-
SSDEEP
1536:dVy5jSGXT0XRhyRjVf3znOJTv3lcUK/+dWzCP7oYTcSQt96O9/71BT:Dy5jSOSyRxvY3md+dWWZy19/v
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-