4fc152569e03fa008939946479e86ee6942f88a03a5e3e53b3b047d81301be3f

Analysis

max time kernel
91s
max time network
128s
platform
windows10-2004_x64
resource
win10v2004-20240704-en
resource tags

arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
submitted
05-07-2024 14:37

Target

2024-07-05_9d919a6b79cedf8cb739d3bb895cb512_poet-rat_snatch.exe
Size

15.6MB
MD5

9d919a6b79cedf8cb739d3bb895cb512
SHA1

45928e5cba7eb83bd8f820e6f309dd168b2ca9c6
SHA256

4fc152569e03fa008939946479e86ee6942f88a03a5e3e53b3b047d81301be3f
SHA512

d208c98e326b6b88fa67bcb7fabb47396f349296f65f074e6efef2174b2d8381cb2071043199f028e6edddd607c32349ab2e1254308290c40373305a03df3828
SSDEEP

98304:gTy9FDIv26vpguW2FIp6SofC1oE8EG1dpzXIT4oTHONPAMgH:bIv26vAaIpZx8EREtAM

Score

1^/10

Suspicious behavior: EnumeratesProcesses 4 IoCs

pid	Process
2248	2024-07-05_9d919a6b79cedf8cb739d3bb895cb512_poet-rat_snatch.exe
2248	2024-07-05_9d919a6b79cedf8cb739d3bb895cb512_poet-rat_snatch.exe
2248	2024-07-05_9d919a6b79cedf8cb739d3bb895cb512_poet-rat_snatch.exe
2248	2024-07-05_9d919a6b79cedf8cb739d3bb895cb512_poet-rat_snatch.exe

C:\Users\Admin\AppData\Local\Temp\2024-07-05_9d919a6b79cedf8cb739d3bb895cb512_poet-rat_snatch.exe
"C:\Users\Admin\AppData\Local\Temp\2024-07-05_9d919a6b79cedf8cb739d3bb895cb512_poet-rat_snatch.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
PID:2248