General
-
Target
6702250deae17b952a1f0605158f90219524f62d28042f1db0dee7af7dd02642N.exe
-
Size
78KB
-
Sample
241218-18malsvnck
-
MD5
d80ac5925e3cb10492059666bd61ed80
-
SHA1
49a0c2bb7410ec9b91b816473cbb3da854bc1661
-
SHA256
6702250deae17b952a1f0605158f90219524f62d28042f1db0dee7af7dd02642
-
SHA512
8f1c40e0b0508c7383b535f4259d86e585e3be3302c86156c052a9bea8bc71e9f724bfcce9ac7f5fe17389d87a950113aa758086bf35f92bb5b7d49fd8ac5c58
-
SSDEEP
1536:nPWV5Ndy0MochZDsC8Kl/99Z242UdIAkn3jKZPjoYaoQtN6h9/S1VW:nPWV5Yn7N041Qqhgi9//
Malware Config
Targets
-
-
Target
6702250deae17b952a1f0605158f90219524f62d28042f1db0dee7af7dd02642N.exe
-
Size
78KB
-
MD5
d80ac5925e3cb10492059666bd61ed80
-
SHA1
49a0c2bb7410ec9b91b816473cbb3da854bc1661
-
SHA256
6702250deae17b952a1f0605158f90219524f62d28042f1db0dee7af7dd02642
-
SHA512
8f1c40e0b0508c7383b535f4259d86e585e3be3302c86156c052a9bea8bc71e9f724bfcce9ac7f5fe17389d87a950113aa758086bf35f92bb5b7d49fd8ac5c58
-
SSDEEP
1536:nPWV5Ndy0MochZDsC8Kl/99Z242UdIAkn3jKZPjoYaoQtN6h9/S1VW:nPWV5Yn7N041Qqhgi9//
Score10/10-
MetamorpherRAT
Metamorpherrat is a hacking tool that has been around for a while since 2013.
-
Metamorpherrat family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-