f82b6505e9f32b004395f5a279009ab9310d59c05d0f15e5d7e53af044f69a58 | Triage

Sharing

General

Target

2024-08-20_394f76691276241b4a42546924f006d1_poet-rat_snatch
Size

5.8MB
Sample

240820-a7fhkaygmq
MD5

394f76691276241b4a42546924f006d1
SHA1

31aeb2daafb5e6d533418c403c8d25603307e391
SHA256

f82b6505e9f32b004395f5a279009ab9310d59c05d0f15e5d7e53af044f69a58
SHA512

a9f10592c6fde4cc42d9d546dc3caf172d4ec0c657de08f2a62e2eca0223cd2125e501f945d970e921734c0f6140b322b4276e1af035843e7212b29dd49973cf
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfM:63CE/Xx4LKhdktESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-08-20_394f76691276241b4a42546924f006d1_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  394f76691276241b4a42546924f006d1
- SHA1
  
  31aeb2daafb5e6d533418c403c8d25603307e391
- SHA256
  
  f82b6505e9f32b004395f5a279009ab9310d59c05d0f15e5d7e53af044f69a58
- SHA512
  
  a9f10592c6fde4cc42d9d546dc3caf172d4ec0c657de08f2a62e2eca0223cd2125e501f945d970e921734c0f6140b322b4276e1af035843e7212b29dd49973cf
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfM:63CE/Xx4LKhdktESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2