General
-
Target
bc10385b1dd0486ef71c62d5df53d810N
-
Size
78KB
-
Sample
240909-llvwxatgjg
-
MD5
bc10385b1dd0486ef71c62d5df53d810
-
SHA1
862b9314fa4e2285272dcfc7bc24cf18d8b18f8a
-
SHA256
5dcff7664cf550fde032b4e311f08ca5d39ade3c1b87453176eeedc595375cbf
-
SHA512
8070178de37490791c3a856df81820588eb6a90beba4162f90faceef6273e01086aeb6dec534a54a81019ecdfee0f9e499f6b0dcceadb20e7f30497679aa5315
-
SSDEEP
1536:fcRWtHHuaJtZAlGmWw644txVILJtcfJuovFdPKmNqOqD70Gou2P2oYe9QtL09/Nb:kRWtH/3ZAtWDDILJLovbicqOq3o+nL0v
Malware Config
Targets
-
-
Target
bc10385b1dd0486ef71c62d5df53d810N
-
Size
78KB
-
MD5
bc10385b1dd0486ef71c62d5df53d810
-
SHA1
862b9314fa4e2285272dcfc7bc24cf18d8b18f8a
-
SHA256
5dcff7664cf550fde032b4e311f08ca5d39ade3c1b87453176eeedc595375cbf
-
SHA512
8070178de37490791c3a856df81820588eb6a90beba4162f90faceef6273e01086aeb6dec534a54a81019ecdfee0f9e499f6b0dcceadb20e7f30497679aa5315
-
SSDEEP
1536:fcRWtHHuaJtZAlGmWw644txVILJtcfJuovFdPKmNqOqD70Gou2P2oYe9QtL09/Nb:kRWtH/3ZAtWDDILJLovbicqOq3o+nL0v
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-