General
-
Target
4a669a6552ce01b8166be6520c4e009b1df2393a79778ce74b4bbf7ddb59da41N
-
Size
78KB
-
Sample
241108-zvatzszcnc
-
MD5
1b1c5df4bc7bd45362a00185c12eba50
-
SHA1
57072f26a09e7fd3111b6789cbe7fd483ab77e1d
-
SHA256
4a669a6552ce01b8166be6520c4e009b1df2393a79778ce74b4bbf7ddb59da41
-
SHA512
baa086046b94b6e1ec5e33238378c103b47ecbc4123a9abfd2c725cf88be9d37fe02a930215cd8dc89277c01107fd4f7b40de6f617a1748b4d1d211a59f27871
-
SSDEEP
1536:gHY6uaJtVpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQte9/F1Br:gHYI3DJywQjDgTLopLwdCFJze9/V
Malware Config
Targets
-
-
Target
4a669a6552ce01b8166be6520c4e009b1df2393a79778ce74b4bbf7ddb59da41N
-
Size
78KB
-
MD5
1b1c5df4bc7bd45362a00185c12eba50
-
SHA1
57072f26a09e7fd3111b6789cbe7fd483ab77e1d
-
SHA256
4a669a6552ce01b8166be6520c4e009b1df2393a79778ce74b4bbf7ddb59da41
-
SHA512
baa086046b94b6e1ec5e33238378c103b47ecbc4123a9abfd2c725cf88be9d37fe02a930215cd8dc89277c01107fd4f7b40de6f617a1748b4d1d211a59f27871
-
SSDEEP
1536:gHY6uaJtVpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQte9/F1Br:gHYI3DJywQjDgTLopLwdCFJze9/V
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Metamorpherrat family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-