General
-
Target
2024-06-19_2c9eb645379588518c099709f38ac3ee_poet-rat_snatch
-
Size
13.2MB
-
MD5
2c9eb645379588518c099709f38ac3ee
-
SHA1
63dfb2dee141533f035a62ba79aea2e3d383d07e
-
SHA256
0b434a76e53b4d62c9d29af5926ba5f222662bd2326e07a6a4ac6daadd97c56e
-
SHA512
100f49b7d9a3ace0d1b56627dd1842b5c053ef1b72d3638e2c22060052f882f3b835d9010414f1e8a972eadc5b0f4aaeefe6024ade1d3d17ed47cdc0b36a2a0e
-
SSDEEP
98304:3L4N6gwZYL4+zRz0BpJfOIO+QwYT3EtzVi1Whs+/aViKwjdr:3YLzzRz0BOAYAtzLKs
Score
10/10
Malware Config
Signatures
-
Detects Windows executables referencing non-Windows User-Agents 1 IoCs
-
Detects executables containing URLs to raw contents of a Github gist 1 IoCs
-
Detects executables referencing many IR and analysis tools 1 IoCs
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2024-06-19_2c9eb645379588518c099709f38ac3ee_poet-rat_snatch
Headers
Sections