e219eebeaa42cbbc3ddec4b32a5ffe528f821d80294d1ebf5688f19036ecd37e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-07-22_e1dcb29b9e2aa03de7a65cdca0d75b72_poet-rat_snatch
Size

5.8MB
Sample

240722-xlnndasdne
MD5

e1dcb29b9e2aa03de7a65cdca0d75b72
SHA1

a9b3387a29c63c5101c7ec9017d8c62b1808d32c
SHA256

e219eebeaa42cbbc3ddec4b32a5ffe528f821d80294d1ebf5688f19036ecd37e
SHA512

cebf9e5337de43b0013bc5b878a65b52b17e3b97ace1631bd475904f93a0410c6291ef8d8897e9f8d79b818768e02dbf592c0216766fc88a667198409972a0c5
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZf9:63CE/Xx4LKhdkOESp3

Score

7^/10

Malware Config

Targets

- Target
  
  2024-07-22_e1dcb29b9e2aa03de7a65cdca0d75b72_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  e1dcb29b9e2aa03de7a65cdca0d75b72
- SHA1
  
  a9b3387a29c63c5101c7ec9017d8c62b1808d32c
- SHA256
  
  e219eebeaa42cbbc3ddec4b32a5ffe528f821d80294d1ebf5688f19036ecd37e
- SHA512
  
  cebf9e5337de43b0013bc5b878a65b52b17e3b97ace1631bd475904f93a0410c6291ef8d8897e9f8d79b818768e02dbf592c0216766fc88a667198409972a0c5
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZf9:63CE/Xx4LKhdkOESp3
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2