Overview

overview

10

Static

static

3

9e4a87005b...2N.exe

windows7-x64

7

9e4a87005b...2N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9e4a87005b7af65198e5b0f3833e605824b2385ff55778d94336dd90ea240112N.exe

  • Size

    78KB

  • Sample

    241207-f7t9lstqhr

  • MD5

    48fa921d6f8bec33e842bc09f2c65000

  • SHA1

    ddfd0086baae02d12bd923faf809a00303ba2acd

  • SHA256

    9e4a87005b7af65198e5b0f3833e605824b2385ff55778d94336dd90ea240112

  • SHA512

    99dacf5bd092f379b1632e7c87b13745b1751583ac8f29fa93b57cbe54d0a594c35a5450536df165a8b69d5a49a3fa2379231a8dc0d2b61455157e3e46b00712

  • SSDEEP

    1536:l+5jSNpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQti67Y9/PC1aw:I5jS7JywQjDgTLopLwdCFJzDY9/E

Score
10/10
metamorpherratdiscoveryratstealertrojan

Malware Config

Targets

    • Target

      9e4a87005b7af65198e5b0f3833e605824b2385ff55778d94336dd90ea240112N.exe

    • Size

      78KB

    • MD5

      48fa921d6f8bec33e842bc09f2c65000

    • SHA1

      ddfd0086baae02d12bd923faf809a00303ba2acd

    • SHA256

      9e4a87005b7af65198e5b0f3833e605824b2385ff55778d94336dd90ea240112

    • SHA512

      99dacf5bd092f379b1632e7c87b13745b1751583ac8f29fa93b57cbe54d0a594c35a5450536df165a8b69d5a49a3fa2379231a8dc0d2b61455157e3e46b00712

    • SSDEEP

      1536:l+5jSNpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQti67Y9/PC1aw:I5jS7JywQjDgTLopLwdCFJzDY9/E

    Score
    10/10
    discoverymetamorpherratratstealertrojan

    • MetamorpherRAT

      Metamorpherrat is a hacking tool that has been around for a while since 2013.

      trojanratstealermetamorpherrat

    • Metamorpherrat family

      metamorpherrat

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks