metamorpherrat | a1d457d172edfc07dcdb6823544b20148ddbd4e34b287915f7771041a89219b4 | Triage

Sharing

General

Target

a1d457d172edfc07dcdb6823544b20148ddbd4e34b287915f7771041a89219b4N.exe
Size

78KB
Sample

241207-x83qtavlfl
MD5

d55f100cfb933229802926d5e142a700
SHA1

b58f25f840f8a95793df1ae0ca3fe1757eeb6116
SHA256

a1d457d172edfc07dcdb6823544b20148ddbd4e34b287915f7771041a89219b4
SHA512

ee2ef6aeefbceea0c98ff4fee92ffe45bdd7a7a96cdcea93bd187a90742025c9b87002a73c626e76f5077527a889dbfcf142e6bda3e028b7c1b63a390772fb85
SSDEEP

1536:n858RpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQtt6V9/cM1KR:858nJywQjDgTLopLwdCFJzi9/m

Score

10^/10

metamorpherrat discovery rat stealer trojan

Malware Config

Targets

- Target
  
  a1d457d172edfc07dcdb6823544b20148ddbd4e34b287915f7771041a89219b4N.exe
- Size
  
  78KB
- MD5
  
  d55f100cfb933229802926d5e142a700
- SHA1
  
  b58f25f840f8a95793df1ae0ca3fe1757eeb6116
- SHA256
  
  a1d457d172edfc07dcdb6823544b20148ddbd4e34b287915f7771041a89219b4
- SHA512
  
  ee2ef6aeefbceea0c98ff4fee92ffe45bdd7a7a96cdcea93bd187a90742025c9b87002a73c626e76f5077527a889dbfcf142e6bda3e028b7c1b63a390772fb85
- SSDEEP
  
  1536:n858RpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQtt6V9/cM1KR:858nJywQjDgTLopLwdCFJzi9/m
Score

10^/10

metamorpherrat discovery rat stealer trojan
- MetamorpherRAT
  Metamorpherrat is a hacking tool that has been around for a while since 2013.
  trojan rat stealer metamorpherrat
- Metamorpherrat family
  metamorpherrat
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

metamorpherratdiscoveryratstealertrojan

behavioral2

metamorpherratdiscoveryratstealertrojan