General
-
Target
fc476cb3675fd20ad30db92c1e9401c0a64ada552270e806f9df85069876faba.exe
-
Size
78KB
-
Sample
241206-k74v9swmal
-
MD5
6e65dad7ec0f24894c45295ca9d84639
-
SHA1
e0212066ee7ab4c70ccdf6e3e7fe147d1727f6d3
-
SHA256
fc476cb3675fd20ad30db92c1e9401c0a64ada552270e806f9df85069876faba
-
SHA512
e876f82c11b2183bf1ee71b77e1450a1e69ec6989e2fc926e9d0c3526fa7a37c6036389a27fb68424e17751f555542fff4236492bec6e26dae526b94c2b10501
-
SSDEEP
1536:VHF3M7t4XT0XRhyRjVf3hTzdEzcEGvCZ1Hc5RPuoYciQtz9/l1QXFl:VHF8hASyRxvhTzXPvCbW2Uz9/4Vl
Malware Config
Targets
-
-
Target
fc476cb3675fd20ad30db92c1e9401c0a64ada552270e806f9df85069876faba.exe
-
Size
78KB
-
MD5
6e65dad7ec0f24894c45295ca9d84639
-
SHA1
e0212066ee7ab4c70ccdf6e3e7fe147d1727f6d3
-
SHA256
fc476cb3675fd20ad30db92c1e9401c0a64ada552270e806f9df85069876faba
-
SHA512
e876f82c11b2183bf1ee71b77e1450a1e69ec6989e2fc926e9d0c3526fa7a37c6036389a27fb68424e17751f555542fff4236492bec6e26dae526b94c2b10501
-
SSDEEP
1536:VHF3M7t4XT0XRhyRjVf3hTzdEzcEGvCZ1Hc5RPuoYciQtz9/l1QXFl:VHF8hASyRxvhTzXPvCbW2Uz9/4Vl
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Metamorpherrat family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-