General
-
Target
c35ed95ba7840798c78c686fb075697d21b3b3d4a88c58be68493b12d237219eN.exe
-
Size
78KB
-
Sample
241204-yg9kqaxqh1
-
MD5
7eec8047ab601bd58f2c3bb8c8567d50
-
SHA1
4e68de6596162bf302c33712c013d4ab98957fdb
-
SHA256
c35ed95ba7840798c78c686fb075697d21b3b3d4a88c58be68493b12d237219e
-
SHA512
23a960119a828a0d1a17ab20fd092ce1565796877a1a60c1012ecff7b37ce7440b76bd15c61d3b79248e80a976fedf47500e2a92407a0b18d4e54733e062585c
-
SSDEEP
1536:EzWV59XT0XRhyRjVf3znOJTv3lcUK/+dWzCP7oYTcSQt96CV9/JN1uN:qWV5tSyRxvY3md+dWWZyfV9/Ja
Malware Config
Targets
-
-
Target
c35ed95ba7840798c78c686fb075697d21b3b3d4a88c58be68493b12d237219eN.exe
-
Size
78KB
-
MD5
7eec8047ab601bd58f2c3bb8c8567d50
-
SHA1
4e68de6596162bf302c33712c013d4ab98957fdb
-
SHA256
c35ed95ba7840798c78c686fb075697d21b3b3d4a88c58be68493b12d237219e
-
SHA512
23a960119a828a0d1a17ab20fd092ce1565796877a1a60c1012ecff7b37ce7440b76bd15c61d3b79248e80a976fedf47500e2a92407a0b18d4e54733e062585c
-
SSDEEP
1536:EzWV59XT0XRhyRjVf3znOJTv3lcUK/+dWzCP7oYTcSQt96CV9/JN1uN:qWV5tSyRxvY3md+dWWZyfV9/Ja
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Metamorpherrat family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-