e677b9e9d3b7815a2d67b07ec77c842cff34b2b91c2af92e574bf45433f6dca2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-08-29_ec5f3bf5fbd1e25d3351e5af411905d7_poet-rat_snatch
Size

5.8MB
Sample

240829-f4t5faxfpm
MD5

ec5f3bf5fbd1e25d3351e5af411905d7
SHA1

a8163e4651272be03faa8f15be063a8f9c815d3b
SHA256

e677b9e9d3b7815a2d67b07ec77c842cff34b2b91c2af92e574bf45433f6dca2
SHA512

2c7179e40c0078893080d274b7c3f4831a56d9d3fd37a2ec1e71920936e02016ce371df7212b1738319751e81eac21cee3d6fe932005e98ddbaa5f6f68ebceed
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZf5:63CE/Xx4LKhdkIESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-08-29_ec5f3bf5fbd1e25d3351e5af411905d7_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  ec5f3bf5fbd1e25d3351e5af411905d7
- SHA1
  
  a8163e4651272be03faa8f15be063a8f9c815d3b
- SHA256
  
  e677b9e9d3b7815a2d67b07ec77c842cff34b2b91c2af92e574bf45433f6dca2
- SHA512
  
  2c7179e40c0078893080d274b7c3f4831a56d9d3fd37a2ec1e71920936e02016ce371df7212b1738319751e81eac21cee3d6fe932005e98ddbaa5f6f68ebceed
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZf5:63CE/Xx4LKhdkIESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2