d27a2db4503b47446d69e3d9dff3afda5353a12768a2e4bc34a13dd9232e21f6 | Triage

Sharing

General

Target

2024-08-10_c2224963576eacfa4a850a1680e78532_poet-rat_snatch
Size

5.8MB
Sample

240810-cracqa1fqr
MD5

c2224963576eacfa4a850a1680e78532
SHA1

b7f2f5a0074b3c7319655316ebba7d1b21e1e145
SHA256

d27a2db4503b47446d69e3d9dff3afda5353a12768a2e4bc34a13dd9232e21f6
SHA512

5c2d43f74c36bf77218f501f33b42da78c1d01470ee19223c5fe09fa2a0ab47a70b335482f803fd1a5a52ef0a60681dd66a9244c23116ad0ff132a0af4dd8cd8
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfO:63CE/Xx4LKhdkVESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-08-10_c2224963576eacfa4a850a1680e78532_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  c2224963576eacfa4a850a1680e78532
- SHA1
  
  b7f2f5a0074b3c7319655316ebba7d1b21e1e145
- SHA256
  
  d27a2db4503b47446d69e3d9dff3afda5353a12768a2e4bc34a13dd9232e21f6
- SHA512
  
  5c2d43f74c36bf77218f501f33b42da78c1d01470ee19223c5fe09fa2a0ab47a70b335482f803fd1a5a52ef0a60681dd66a9244c23116ad0ff132a0af4dd8cd8
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfO:63CE/Xx4LKhdkVESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2