General
-
Target
c1535523bdbc63a13d5845519e25fd00N.exe
-
Size
78KB
-
Sample
240813-kndjzayelm
-
MD5
c1535523bdbc63a13d5845519e25fd00
-
SHA1
8b0b47e7de1e89fb9eb6d9b10cd64a12a99389ae
-
SHA256
9f0e6950d67a024b4a67615f2ba277e6c9b2e8ae4856241cbaf7ead986b94a66
-
SHA512
57708b9e3a9967d6759dac4c265380c40d9efa1cd4daa85c2008c48ffeaa884de6d973d51bdc0fc76aac29e031f0e1a0378aeb6015f2412bac08ee33ed1a9741
-
SSDEEP
1536:wc5MXT0XRhyRjVf3hTzdEzcEGvCZ1Hc5RPuoYciQt961o9/j1jg:wc50SyRxvhTzXPvCbW2UGo9/6
Malware Config
Targets
-
-
Target
c1535523bdbc63a13d5845519e25fd00N.exe
-
Size
78KB
-
MD5
c1535523bdbc63a13d5845519e25fd00
-
SHA1
8b0b47e7de1e89fb9eb6d9b10cd64a12a99389ae
-
SHA256
9f0e6950d67a024b4a67615f2ba277e6c9b2e8ae4856241cbaf7ead986b94a66
-
SHA512
57708b9e3a9967d6759dac4c265380c40d9efa1cd4daa85c2008c48ffeaa884de6d973d51bdc0fc76aac29e031f0e1a0378aeb6015f2412bac08ee33ed1a9741
-
SSDEEP
1536:wc5MXT0XRhyRjVf3hTzdEzcEGvCZ1Hc5RPuoYciQt961o9/j1jg:wc50SyRxvhTzXPvCbW2UGo9/6
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-