General
-
Target
e611ee658986008d3dbb24266c69f9c7fddd447028ae7739d98e2c8cb4a5528eN
-
Size
78KB
-
Sample
241020-wlwtbatfjn
-
MD5
b72e7beb1ae1638ce457d13fa05d5fe0
-
SHA1
dbdb1a8ed3ad2011523a7c3b736ce4d0a1043135
-
SHA256
e611ee658986008d3dbb24266c69f9c7fddd447028ae7739d98e2c8cb4a5528e
-
SHA512
4aab0974ffe534b87bc05ff31a22fd2012655540012de8a7d974af53a84046dbc812498d0fcc6ba0d19dade5539885dcfe6c0ed4ba7df67f794a13bb5e63cddd
-
SSDEEP
1536:BHFo6uaJtVpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQta9/rN1+x:BHFoI3DJywQjDgTLopLwdCFJza9/m
Malware Config
Targets
-
-
Target
e611ee658986008d3dbb24266c69f9c7fddd447028ae7739d98e2c8cb4a5528eN
-
Size
78KB
-
MD5
b72e7beb1ae1638ce457d13fa05d5fe0
-
SHA1
dbdb1a8ed3ad2011523a7c3b736ce4d0a1043135
-
SHA256
e611ee658986008d3dbb24266c69f9c7fddd447028ae7739d98e2c8cb4a5528e
-
SHA512
4aab0974ffe534b87bc05ff31a22fd2012655540012de8a7d974af53a84046dbc812498d0fcc6ba0d19dade5539885dcfe6c0ed4ba7df67f794a13bb5e63cddd
-
SSDEEP
1536:BHFo6uaJtVpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQta9/rN1+x:BHFoI3DJywQjDgTLopLwdCFJza9/m
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-