152fdf3c23ef69ad4395850741ffa0389904fad15d97a820502154ceedd8af14 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-08-06_c52d02deead2603832ef3ae894cd573d_poet-rat_snatch
Size

5.8MB
Sample

240806-xjyqkaxcjn
MD5

c52d02deead2603832ef3ae894cd573d
SHA1

6fe3004ff2f6ff9aa97abf8faa5f698cd5d90aa6
SHA256

152fdf3c23ef69ad4395850741ffa0389904fad15d97a820502154ceedd8af14
SHA512

95baa3ab73f0b7b485c897279fc47c078315c00e56e84d013509fc9fc7b7fa48dc8e0cf5844c351833a1dc50a8c3865c5e560dfe0290206f65ddff6c35f8afc3
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfe:63CE/Xx4LKhdkxESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-08-06_c52d02deead2603832ef3ae894cd573d_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  c52d02deead2603832ef3ae894cd573d
- SHA1
  
  6fe3004ff2f6ff9aa97abf8faa5f698cd5d90aa6
- SHA256
  
  152fdf3c23ef69ad4395850741ffa0389904fad15d97a820502154ceedd8af14
- SHA512
  
  95baa3ab73f0b7b485c897279fc47c078315c00e56e84d013509fc9fc7b7fa48dc8e0cf5844c351833a1dc50a8c3865c5e560dfe0290206f65ddff6c35f8afc3
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfe:63CE/Xx4LKhdkxESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2