8b18544b706a561828125ab365dee76f4d4852e177335cad2d59c374e9b721c4 | Triage

Sharing

General

Target

2024-08-19_db9c30f21b4b21d7cf28e6af6587556d_poet-rat_snatch
Size

5.8MB
Sample

240819-bakaxsybjn
MD5

db9c30f21b4b21d7cf28e6af6587556d
SHA1

fefed63ce7ebe6827281704878abf5989c618b43
SHA256

8b18544b706a561828125ab365dee76f4d4852e177335cad2d59c374e9b721c4
SHA512

05677f4a8c5e7be884a990d4ac455ef48007490b152dfa1ecb9ad99d68ce9e3e9b0873b2fa2a1cae29e688a69e06075d231ff434b22ccf92a45cbc371ed2ff23
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZf/:63CE/Xx4LKhdkTESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-08-19_db9c30f21b4b21d7cf28e6af6587556d_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  db9c30f21b4b21d7cf28e6af6587556d
- SHA1
  
  fefed63ce7ebe6827281704878abf5989c618b43
- SHA256
  
  8b18544b706a561828125ab365dee76f4d4852e177335cad2d59c374e9b721c4
- SHA512
  
  05677f4a8c5e7be884a990d4ac455ef48007490b152dfa1ecb9ad99d68ce9e3e9b0873b2fa2a1cae29e688a69e06075d231ff434b22ccf92a45cbc371ed2ff23
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZf/:63CE/Xx4LKhdkTESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2