General
-
Target
fff5930f5eab2587edf16567fbcc104a6ae0d01d53a7542178a626b7103e65d6.exe
-
Size
78KB
-
Sample
241207-k2q28a1nfl
-
MD5
b76a31ddb76c64289d387a0109d2f5f1
-
SHA1
7e709a34a7943dac03f37eb38a6782714919cae0
-
SHA256
fff5930f5eab2587edf16567fbcc104a6ae0d01d53a7542178a626b7103e65d6
-
SHA512
e761bb8519c80314abbd73d79561ffddf271938af2810d04c3b2b1c84879b53d0f24ea50628e2238581a3bebdb1ee6690d169e45447ae64cae7be3f740ecb231
-
SSDEEP
1536:ctHF3rdELT8hn2Ep7WzPdVj6Ju8B3AZ242UdIAkD4x3HT4hPVoYdVQti9/411q4K:ctHFbdSE2EwR4uY41HyvYi9/uK
Malware Config
Targets
-
-
Target
fff5930f5eab2587edf16567fbcc104a6ae0d01d53a7542178a626b7103e65d6.exe
-
Size
78KB
-
MD5
b76a31ddb76c64289d387a0109d2f5f1
-
SHA1
7e709a34a7943dac03f37eb38a6782714919cae0
-
SHA256
fff5930f5eab2587edf16567fbcc104a6ae0d01d53a7542178a626b7103e65d6
-
SHA512
e761bb8519c80314abbd73d79561ffddf271938af2810d04c3b2b1c84879b53d0f24ea50628e2238581a3bebdb1ee6690d169e45447ae64cae7be3f740ecb231
-
SSDEEP
1536:ctHF3rdELT8hn2Ep7WzPdVj6Ju8B3AZ242UdIAkD4x3HT4hPVoYdVQti9/411q4K:ctHFbdSE2EwR4uY41HyvYi9/uK
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Metamorpherrat family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-