General
-
Target
8eae236245771e00d90048d98d9a0610N.exe
-
Size
78KB
-
Sample
240805-pvc91awdkl
-
MD5
8eae236245771e00d90048d98d9a0610
-
SHA1
a00ab96a21645b310e20a72a9005ab1bf5a32e51
-
SHA256
ccd3836e4cf4bf924e3e5e00910fae8282207056ca181423e57571abcbcea288
-
SHA512
973171e636fe7b3bc8b6eeea6a5a29d56d3e101407082b58ce273d7b75ec586561e4aca2c58b82d23eb3dd98da7c7b86750fb1c287c05a177993909539410d72
-
SSDEEP
1536:2HFo6638dy0MochZDsC8Kl/99Z242UdIAkn3jKZPjoYaoQt99/2VhB1Ts:2HFo53Ln7N041Qqhg99/B
Malware Config
Targets
-
-
Target
8eae236245771e00d90048d98d9a0610N.exe
-
Size
78KB
-
MD5
8eae236245771e00d90048d98d9a0610
-
SHA1
a00ab96a21645b310e20a72a9005ab1bf5a32e51
-
SHA256
ccd3836e4cf4bf924e3e5e00910fae8282207056ca181423e57571abcbcea288
-
SHA512
973171e636fe7b3bc8b6eeea6a5a29d56d3e101407082b58ce273d7b75ec586561e4aca2c58b82d23eb3dd98da7c7b86750fb1c287c05a177993909539410d72
-
SSDEEP
1536:2HFo6638dy0MochZDsC8Kl/99Z242UdIAkn3jKZPjoYaoQt99/2VhB1Ts:2HFo53Ln7N041Qqhg99/B
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-