General
-
Target
a2287523477ae7d89d7c4ef21380cfd6031bf94eb068883f842ed37d21acd855
-
Size
78KB
-
Sample
240817-dpf8xstglf
-
MD5
592c6d0266b3496ba78464569efa9e7b
-
SHA1
8d70b2a061c3d987b27ea42ecb798cdce8314d6d
-
SHA256
a2287523477ae7d89d7c4ef21380cfd6031bf94eb068883f842ed37d21acd855
-
SHA512
ff0402a4dc81575cc9cc02696669579aa93af31d88743aa87a43756a5ab0f907f6287ef7cbfb196712f2739c9a9a31fec9e8780ad3a7311a2fa165b5bb50840f
-
SSDEEP
1536:HHHM7t4XT0XRhyRjVf3hTzdEzcEGvCZ1Hc5RPuoYciQto9/C18u:HHshASyRxvhTzXPvCbW2Uo9/E
Malware Config
Targets
-
-
Target
a2287523477ae7d89d7c4ef21380cfd6031bf94eb068883f842ed37d21acd855
-
Size
78KB
-
MD5
592c6d0266b3496ba78464569efa9e7b
-
SHA1
8d70b2a061c3d987b27ea42ecb798cdce8314d6d
-
SHA256
a2287523477ae7d89d7c4ef21380cfd6031bf94eb068883f842ed37d21acd855
-
SHA512
ff0402a4dc81575cc9cc02696669579aa93af31d88743aa87a43756a5ab0f907f6287ef7cbfb196712f2739c9a9a31fec9e8780ad3a7311a2fa165b5bb50840f
-
SSDEEP
1536:HHHM7t4XT0XRhyRjVf3hTzdEzcEGvCZ1Hc5RPuoYciQto9/C18u:HHshASyRxvhTzXPvCbW2Uo9/E
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-