General
-
Target
f653e3af3d80404a4ed3c499f4b1826b1f7c5799f68f114e984c197e461f0c7d
-
Size
78KB
-
Sample
241026-fyrgcsxqbk
-
MD5
54f42b17ddd2252d4d53db327a6c5fbd
-
SHA1
db7b765012e7f85a6dc3db7aa12a314cf07c0858
-
SHA256
f653e3af3d80404a4ed3c499f4b1826b1f7c5799f68f114e984c197e461f0c7d
-
SHA512
0b6fde744f424c0e4dcc7c971f9eb4c6c025847fac72b89cd1590e620bc04d4c48f05681bdda89b93b88e522cd29ff219ec631bd15ad42bc50161287f24f7c3f
-
SSDEEP
1536:2uHHuaJtVpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQtLKk9/A18O:2uH/3DJywQjDgTLopLwdCFJzLKk9/6
Malware Config
Targets
-
-
Target
f653e3af3d80404a4ed3c499f4b1826b1f7c5799f68f114e984c197e461f0c7d
-
Size
78KB
-
MD5
54f42b17ddd2252d4d53db327a6c5fbd
-
SHA1
db7b765012e7f85a6dc3db7aa12a314cf07c0858
-
SHA256
f653e3af3d80404a4ed3c499f4b1826b1f7c5799f68f114e984c197e461f0c7d
-
SHA512
0b6fde744f424c0e4dcc7c971f9eb4c6c025847fac72b89cd1590e620bc04d4c48f05681bdda89b93b88e522cd29ff219ec631bd15ad42bc50161287f24f7c3f
-
SSDEEP
1536:2uHHuaJtVpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQtLKk9/A18O:2uH/3DJywQjDgTLopLwdCFJzLKk9/6
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Metamorpherrat family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-