General
-
Target
68f0c8f59bd000578c48c16f3c05b545ee360814b23be009c928bcaf22463603
-
Size
78KB
-
Sample
241211-2sfnkawkdl
-
MD5
81df97a54b8c4fa3dc0bf640a319dd29
-
SHA1
340a4a7416713b287abaddce099f8d6b02657650
-
SHA256
68f0c8f59bd000578c48c16f3c05b545ee360814b23be009c928bcaf22463603
-
SHA512
63addd28010f6adcfbaa9cbcd62f75a9452a7514697b8053c6edea4466e73b6342ce49b407235034521daeb594456c607de827ff146a271e199e1f8c4fcb7663
-
SSDEEP
1536:ZRWtHFo6uaJtVpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQtMI9/WR1Ch:ZRWtHFoI3DJywQjDgTLopLwdCFJzMI9h
Malware Config
Targets
-
-
Target
68f0c8f59bd000578c48c16f3c05b545ee360814b23be009c928bcaf22463603
-
Size
78KB
-
MD5
81df97a54b8c4fa3dc0bf640a319dd29
-
SHA1
340a4a7416713b287abaddce099f8d6b02657650
-
SHA256
68f0c8f59bd000578c48c16f3c05b545ee360814b23be009c928bcaf22463603
-
SHA512
63addd28010f6adcfbaa9cbcd62f75a9452a7514697b8053c6edea4466e73b6342ce49b407235034521daeb594456c607de827ff146a271e199e1f8c4fcb7663
-
SSDEEP
1536:ZRWtHFo6uaJtVpJywt04wbje3IgTazcoOEEQLwdCRoaeuProYMHQtMI9/WR1Ch:ZRWtHFoI3DJywQjDgTLopLwdCFJzMI9h
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Metamorpherrat family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-