29461f78a00ea299cb23ff251cdc7cbfafb1ee84bc6044cf90c609ac2d656fef | Triage

Sharing

General

Target

2024-08-25_859e3a45247a054d79e44fe8635d86e6_poet-rat_snatch
Size

5.8MB
Sample

240825-z3wresxaqn
MD5

859e3a45247a054d79e44fe8635d86e6
SHA1

09434fc9d19cffb3d29da9bacde52468a7883be9
SHA256

29461f78a00ea299cb23ff251cdc7cbfafb1ee84bc6044cf90c609ac2d656fef
SHA512

692a8d183b45413e29f6d5f337b59d87552368c88ceed202b6148366bb354068c4bd4d801e0539b8bd76687fb77bca1844f4d0d0dd839239bbc4c1819c64fea0
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfK:63CE/Xx4LKhdkQESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-08-25_859e3a45247a054d79e44fe8635d86e6_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  859e3a45247a054d79e44fe8635d86e6
- SHA1
  
  09434fc9d19cffb3d29da9bacde52468a7883be9
- SHA256
  
  29461f78a00ea299cb23ff251cdc7cbfafb1ee84bc6044cf90c609ac2d656fef
- SHA512
  
  692a8d183b45413e29f6d5f337b59d87552368c88ceed202b6148366bb354068c4bd4d801e0539b8bd76687fb77bca1844f4d0d0dd839239bbc4c1819c64fea0
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfK:63CE/Xx4LKhdkQESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2