General
-
Target
25b5038b831e845cf2574e5bd65c60f2c20f0d2c603bece848e1bf09e66608a7.exe
-
Size
78KB
-
Sample
241112-fb5epstrbs
-
MD5
d440bae961f4557a1bb93cedd786ee25
-
SHA1
7e3fd7de63df6e9cd6c5a585575a817e3c9361a3
-
SHA256
25b5038b831e845cf2574e5bd65c60f2c20f0d2c603bece848e1bf09e66608a7
-
SHA512
9d6e6bfb03a9531d8791b1aa7bb95f77f32dcae2b012d1e480f845c98b1b8e12848d2163ed9c587de5db0554a2b8a9004da453a23aefb2f5fea240555a65efdc
-
SSDEEP
1536:Qy5xpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQtd6z9/m1oxH:Qy5HJywQjDgTLopLwdCFJz49/XH
Malware Config
Targets
-
-
Target
25b5038b831e845cf2574e5bd65c60f2c20f0d2c603bece848e1bf09e66608a7.exe
-
Size
78KB
-
MD5
d440bae961f4557a1bb93cedd786ee25
-
SHA1
7e3fd7de63df6e9cd6c5a585575a817e3c9361a3
-
SHA256
25b5038b831e845cf2574e5bd65c60f2c20f0d2c603bece848e1bf09e66608a7
-
SHA512
9d6e6bfb03a9531d8791b1aa7bb95f77f32dcae2b012d1e480f845c98b1b8e12848d2163ed9c587de5db0554a2b8a9004da453a23aefb2f5fea240555a65efdc
-
SSDEEP
1536:Qy5xpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQtd6z9/m1oxH:Qy5HJywQjDgTLopLwdCFJz49/XH
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Metamorpherrat family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-