General
-
Target
eb5e6c4e4db36b9a5ae247e10491c8b0N.exe
-
Size
78KB
-
Sample
240818-at951svhnb
-
MD5
eb5e6c4e4db36b9a5ae247e10491c8b0
-
SHA1
b7c400e676c79484218396b181949e2edc049260
-
SHA256
b0eaaea93af75e058e49a26348511828fca5b79ae53d5ac544f3b30f54f431da
-
SHA512
2279f7b6087d0536a4fd906d1f2e918733dcf74164d4a802579119c0515c46d881170ce657138ada0b4476a8b8b186e8dbf88fe79a1e5f0fafd168862d802ea5
-
SSDEEP
1536:Ny5jidy0MochZDsC8Kl/99Z242UdIAkn3jKZPjoYaoQtC6d9/y1lC:Ny5j9n7N041Qqhg19/z
Malware Config
Targets
-
-
Target
eb5e6c4e4db36b9a5ae247e10491c8b0N.exe
-
Size
78KB
-
MD5
eb5e6c4e4db36b9a5ae247e10491c8b0
-
SHA1
b7c400e676c79484218396b181949e2edc049260
-
SHA256
b0eaaea93af75e058e49a26348511828fca5b79ae53d5ac544f3b30f54f431da
-
SHA512
2279f7b6087d0536a4fd906d1f2e918733dcf74164d4a802579119c0515c46d881170ce657138ada0b4476a8b8b186e8dbf88fe79a1e5f0fafd168862d802ea5
-
SSDEEP
1536:Ny5jidy0MochZDsC8Kl/99Z242UdIAkn3jKZPjoYaoQtC6d9/y1lC:Ny5j9n7N041Qqhg19/z
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-