General
-
Target
9ad751317790f66de185b2b3e35e2860N.exe
-
Size
78KB
-
Sample
240715-g6bljsvfnh
-
MD5
9ad751317790f66de185b2b3e35e2860
-
SHA1
10621f9fc7ba5567c95f399eb9b79ab85aa1faef
-
SHA256
c3c79b28d03fefc907a62997b77a4f26040f1d8f48f72304783cd8988d446789
-
SHA512
6c00816f0e8a4c5f7a13330c15f3fe3451fdde1f6000b2da4ee6db89d415df08389761e773749b34c8d897872d74d147b1454bda3a99b4b96ecb6aa87ebb77bb
-
SSDEEP
1536:AWtHFo6638dy0MochZDsC8Kl/99Z242UdIAkn3jKZPjoYaoQtea9/O1sA:AWtHFo53Ln7N041Qqhgea9/O
Malware Config
Targets
-
-
Target
9ad751317790f66de185b2b3e35e2860N.exe
-
Size
78KB
-
MD5
9ad751317790f66de185b2b3e35e2860
-
SHA1
10621f9fc7ba5567c95f399eb9b79ab85aa1faef
-
SHA256
c3c79b28d03fefc907a62997b77a4f26040f1d8f48f72304783cd8988d446789
-
SHA512
6c00816f0e8a4c5f7a13330c15f3fe3451fdde1f6000b2da4ee6db89d415df08389761e773749b34c8d897872d74d147b1454bda3a99b4b96ecb6aa87ebb77bb
-
SSDEEP
1536:AWtHFo6638dy0MochZDsC8Kl/99Z242UdIAkn3jKZPjoYaoQtea9/O1sA:AWtHFo53Ln7N041Qqhgea9/O
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-