Overview

overview

10

Static

static

3

190b685023...61.exe

windows7-x64

10

190b685023...61.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    190b685023f0920a9e586666e4d35cba06521a5c795d9562c75bfae875e8d061

  • Size

    78KB

  • Sample

    241029-y5fbsaxrgy

  • MD5

    daa403e3352b2457a3c6446877612209

  • SHA1

    b69c26b5d22257793cfcf4e06a6ad9dd097da72a

  • SHA256

    190b685023f0920a9e586666e4d35cba06521a5c795d9562c75bfae875e8d061

  • SHA512

    a4c5fcc13aec1001eefdf51b47b9dd7a7b1d358eba5d27a774222f5bdc34c1571aa901bb7af95fb04b1d7352c6d18bc618109d4b9bc17d28a3d9c46160907a93

  • SSDEEP

    1536:wc58YpJywt04wbje37TazckwzW4UfSqRovPtoY0BQt96A9/n1mI:wc58WJywQj2TLo4UJuXHhn9/N

Score
10/10
metamorpherratdiscoveryratstealertrojan

Malware Config

Targets

    • Target

      190b685023f0920a9e586666e4d35cba06521a5c795d9562c75bfae875e8d061

    • Size

      78KB

    • MD5

      daa403e3352b2457a3c6446877612209

    • SHA1

      b69c26b5d22257793cfcf4e06a6ad9dd097da72a

    • SHA256

      190b685023f0920a9e586666e4d35cba06521a5c795d9562c75bfae875e8d061

    • SHA512

      a4c5fcc13aec1001eefdf51b47b9dd7a7b1d358eba5d27a774222f5bdc34c1571aa901bb7af95fb04b1d7352c6d18bc618109d4b9bc17d28a3d9c46160907a93

    • SSDEEP

      1536:wc58YpJywt04wbje37TazckwzW4UfSqRovPtoY0BQt96A9/n1mI:wc58WJywQj2TLo4UJuXHhn9/N

    Score
    10/10
    metamorpherratdiscoveryratstealertrojan

    • MetamorpherRAT

      Metamorpherrat is a hacking tool that has been around for a while since 2013.

      trojanratstealermetamorpherrat

    • Metamorpherrat family

      metamorpherrat

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks