d0a4e9a4d5f555b88124d4811ce28b2d8f39d84fb615d6d43c80b72bd966a9bb | Triage

Sharing

General

Target

2024-08-23_ea39944f0d6314a20a56029845e02a4a_poet-rat_snatch
Size

5.8MB
Sample

240823-dyscjsvgkn
MD5

ea39944f0d6314a20a56029845e02a4a
SHA1

59f0ec70218086e979fac6eaa2f0a8e8a00f87ed
SHA256

d0a4e9a4d5f555b88124d4811ce28b2d8f39d84fb615d6d43c80b72bd966a9bb
SHA512

a0dac17d1a9bb8b6305d7fc85fb3d1f35417eb6ad51ed3e150efdc9b5af367884c0d9a8af1d154194f3452f88101b037aa9419cc039159990e05e138ab7b7839
SSDEEP

49152:vzVnEQO3Cgrb/TbvO90d7HjmAFd4A64nsfJK/pJcBMfDF/4q4quspdkg6KhdvZfE:23C0/3x4rKhd0TEiN

Score

7^/10

Malware Config

Targets

- Target
  
  2024-08-23_ea39944f0d6314a20a56029845e02a4a_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  ea39944f0d6314a20a56029845e02a4a
- SHA1
  
  59f0ec70218086e979fac6eaa2f0a8e8a00f87ed
- SHA256
  
  d0a4e9a4d5f555b88124d4811ce28b2d8f39d84fb615d6d43c80b72bd966a9bb
- SHA512
  
  a0dac17d1a9bb8b6305d7fc85fb3d1f35417eb6ad51ed3e150efdc9b5af367884c0d9a8af1d154194f3452f88101b037aa9419cc039159990e05e138ab7b7839
- SSDEEP
  
  49152:vzVnEQO3Cgrb/TbvO90d7HjmAFd4A64nsfJK/pJcBMfDF/4q4quspdkg6KhdvZfE:23C0/3x4rKhd0TEiN
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2