General
-
Target
1a9172bdc22386b93dbf244876ca31bc64b1675de3b3d4770c78f15a99d6ca17
-
Size
78KB
-
Sample
241201-yyndtavpcr
-
MD5
ae002c0f52fbeac0cb03c901b537c38b
-
SHA1
d2f3f8527b33e67a8079b2fdce154eff5e883ba7
-
SHA256
1a9172bdc22386b93dbf244876ca31bc64b1675de3b3d4770c78f15a99d6ca17
-
SHA512
e0cc49dcd2e9870b9caaa638809f1e42fc0a04cd24e4e150f04daf396f92a9a375dda758e009c8991f9d8e30d27e43f5c1a5cd7fd85d51faddb2980c65b7782e
-
SSDEEP
1536:zCHY6JIfpJywt04wbje37TazckwzW4UfSqRovPtoY0BQtS9/A1dJ:zCHYOIhJywQj2TLo4UJuXHhS9/+
Malware Config
Targets
-
-
Target
1a9172bdc22386b93dbf244876ca31bc64b1675de3b3d4770c78f15a99d6ca17
-
Size
78KB
-
MD5
ae002c0f52fbeac0cb03c901b537c38b
-
SHA1
d2f3f8527b33e67a8079b2fdce154eff5e883ba7
-
SHA256
1a9172bdc22386b93dbf244876ca31bc64b1675de3b3d4770c78f15a99d6ca17
-
SHA512
e0cc49dcd2e9870b9caaa638809f1e42fc0a04cd24e4e150f04daf396f92a9a375dda758e009c8991f9d8e30d27e43f5c1a5cd7fd85d51faddb2980c65b7782e
-
SSDEEP
1536:zCHY6JIfpJywt04wbje37TazckwzW4UfSqRovPtoY0BQtS9/A1dJ:zCHYOIhJywQj2TLo4UJuXHhS9/+
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Metamorpherrat family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-