General
-
Target
92bf786df72ee9c4c0ea4b1bb2d88440N.exe
-
Size
78KB
-
Sample
240716-j8fz6awcla
-
MD5
92bf786df72ee9c4c0ea4b1bb2d88440
-
SHA1
70791cc69ce86beaa2c2979c9e9809570b81c324
-
SHA256
329735c362d188c025cf999e6c52bf6c8e6a3784ead97914f3cf6a8b9f640e31
-
SHA512
c32632a8fa2c5f7e4d91edb307c69fd06675d0c7282464ac7b67d59220dabf8668a7d537c7a1791aaf2dba208db296499f8f58e7ab533aa4791c04b2ea0448dc
-
SSDEEP
1536:bcPCHF3uaJtZAlGmWw644txVILJtcfJuovFdPKmNqOqD70Gou2P2oYe9Qtw9/51j:oPCHFP3ZAtWDDILJLovbicqOq3o+nw9H
Malware Config
Targets
-
-
Target
92bf786df72ee9c4c0ea4b1bb2d88440N.exe
-
Size
78KB
-
MD5
92bf786df72ee9c4c0ea4b1bb2d88440
-
SHA1
70791cc69ce86beaa2c2979c9e9809570b81c324
-
SHA256
329735c362d188c025cf999e6c52bf6c8e6a3784ead97914f3cf6a8b9f640e31
-
SHA512
c32632a8fa2c5f7e4d91edb307c69fd06675d0c7282464ac7b67d59220dabf8668a7d537c7a1791aaf2dba208db296499f8f58e7ab533aa4791c04b2ea0448dc
-
SSDEEP
1536:bcPCHF3uaJtZAlGmWw644txVILJtcfJuovFdPKmNqOqD70Gou2P2oYe9Qtw9/51j:oPCHFP3ZAtWDDILJLovbicqOq3o+nw9H
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-