General
-
Target
199ddce4e0b3a393414a01566c7aa42efe4e8e894a16780716517a39b7157f61.exe
-
Size
78KB
-
Sample
241125-mx6yzssrby
-
MD5
41d48e54bdde61dbaef4a2459f0b365a
-
SHA1
5cbf19224961eae086069f8176102eca8742358b
-
SHA256
199ddce4e0b3a393414a01566c7aa42efe4e8e894a16780716517a39b7157f61
-
SHA512
c742f0f2bfcf44576ebe57d6f7a7128367e27991eeaf4a8cacad59e04276fdf993eab659ad4754fa150351b2abfd37ec3c5bff6c51d83cbc68e1ecb2910a541b
-
SSDEEP
1536:5mCHHuaJtZAlGmWw644txVILJtcfJuovFdPKmNqOqD70Gou2P2oYe9QtL89/n161:UCH/3ZAtWDDILJLovbicqOq3o+nL89/K
Malware Config
Targets
-
-
Target
199ddce4e0b3a393414a01566c7aa42efe4e8e894a16780716517a39b7157f61.exe
-
Size
78KB
-
MD5
41d48e54bdde61dbaef4a2459f0b365a
-
SHA1
5cbf19224961eae086069f8176102eca8742358b
-
SHA256
199ddce4e0b3a393414a01566c7aa42efe4e8e894a16780716517a39b7157f61
-
SHA512
c742f0f2bfcf44576ebe57d6f7a7128367e27991eeaf4a8cacad59e04276fdf993eab659ad4754fa150351b2abfd37ec3c5bff6c51d83cbc68e1ecb2910a541b
-
SSDEEP
1536:5mCHHuaJtZAlGmWw644txVILJtcfJuovFdPKmNqOqD70Gou2P2oYe9QtL89/n161:UCH/3ZAtWDDILJLovbicqOq3o+nL89/K
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Metamorpherrat family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-