General
-
Target
cbf67c723b16be8b15eac4792708f2bc30848948733f92e42c89ab875fa95ab2N.exe
-
Size
78KB
-
Sample
241204-y2eabayrbt
-
MD5
8f0f177e2be050abd297777be9905860
-
SHA1
761debb211dd85f9743bcb0d6e3db7568f51e241
-
SHA256
cbf67c723b16be8b15eac4792708f2bc30848948733f92e42c89ab875fa95ab2
-
SHA512
be23c669011144a8e9fea0282cd39f64e7e4ab0cb4a6751cff32f7b57966f456a5e717807f45f1b306f118a01f26e587ae68eadc8fb3d429e92493d6a9de71b1
-
SSDEEP
1536:ctHF3rdELT8hn2Ep7WzPdVj6Ju8B3AZ242UdIAkD4x3HT4hPVoYdVQti9/411q4:ctHFbdSE2EwR4uY41HyvYi9/u
Malware Config
Targets
-
-
Target
cbf67c723b16be8b15eac4792708f2bc30848948733f92e42c89ab875fa95ab2N.exe
-
Size
78KB
-
MD5
8f0f177e2be050abd297777be9905860
-
SHA1
761debb211dd85f9743bcb0d6e3db7568f51e241
-
SHA256
cbf67c723b16be8b15eac4792708f2bc30848948733f92e42c89ab875fa95ab2
-
SHA512
be23c669011144a8e9fea0282cd39f64e7e4ab0cb4a6751cff32f7b57966f456a5e717807f45f1b306f118a01f26e587ae68eadc8fb3d429e92493d6a9de71b1
-
SSDEEP
1536:ctHF3rdELT8hn2Ep7WzPdVj6Ju8B3AZ242UdIAkD4x3HT4hPVoYdVQti9/411q4:ctHFbdSE2EwR4uY41HyvYi9/u
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Metamorpherrat family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-