General
-
Target
750e8fcf808f11097aaf003bb8bfb04eb48f0e5bac4208dea2c401d94423351fN.exe
-
Size
78KB
-
Sample
241117-twpfwayjdn
-
MD5
97acfa314c7c7e6d50fb1e77997bb0e0
-
SHA1
b1d487f5c1b84245be274e8f1b3e28503e57be23
-
SHA256
750e8fcf808f11097aaf003bb8bfb04eb48f0e5bac4208dea2c401d94423351f
-
SHA512
cc26cb3f38c2b88a3bfbee6650fe4206ece9c989f3db2d528e71ef59a160f46c208c01f4d23ecacab871d1ce5d693694aed500e373e827b0746ff4f6abde016c
-
SSDEEP
1536:ke58mpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQtd6St9/61z1:ke584JywQjDgTLopLwdCFJzh9/C
Malware Config
Targets
-
-
Target
750e8fcf808f11097aaf003bb8bfb04eb48f0e5bac4208dea2c401d94423351fN.exe
-
Size
78KB
-
MD5
97acfa314c7c7e6d50fb1e77997bb0e0
-
SHA1
b1d487f5c1b84245be274e8f1b3e28503e57be23
-
SHA256
750e8fcf808f11097aaf003bb8bfb04eb48f0e5bac4208dea2c401d94423351f
-
SHA512
cc26cb3f38c2b88a3bfbee6650fe4206ece9c989f3db2d528e71ef59a160f46c208c01f4d23ecacab871d1ce5d693694aed500e373e827b0746ff4f6abde016c
-
SSDEEP
1536:ke58mpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQtd6St9/61z1:ke584JywQjDgTLopLwdCFJzh9/C
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Metamorpherrat family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-