1d9ad245c9f98d6a3bb422516f24fcf8102000aaade932740dcf87c21f5f3898 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-30_ed7e7d4c8151d86c882ef41fc3f7043f_poet-rat_snatch
Size

5.8MB
Sample

240630-n25r6axdpb
MD5

ed7e7d4c8151d86c882ef41fc3f7043f
SHA1

e94b531398eb91a6aab21bb42e65e89e2dfe3000
SHA256

1d9ad245c9f98d6a3bb422516f24fcf8102000aaade932740dcf87c21f5f3898
SHA512

150c49cd4053abda076543439119ecce155cccca5ee341f6de19f308217ec3e80a94d214400b578c0540f7120fd6b062c3a9c49fb3111662093f169818d1cf18
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZf+:63CE/Xx4LKhdk7ESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-06-30_ed7e7d4c8151d86c882ef41fc3f7043f_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  ed7e7d4c8151d86c882ef41fc3f7043f
- SHA1
  
  e94b531398eb91a6aab21bb42e65e89e2dfe3000
- SHA256
  
  1d9ad245c9f98d6a3bb422516f24fcf8102000aaade932740dcf87c21f5f3898
- SHA512
  
  150c49cd4053abda076543439119ecce155cccca5ee341f6de19f308217ec3e80a94d214400b578c0540f7120fd6b062c3a9c49fb3111662093f169818d1cf18
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZf+:63CE/Xx4LKhdk7ESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2