4f9f3aa3c9613ab95d881b48e7de68fd6662142cee727a4c0ab85aedf8eeb6d7 | Triage

Sharing

General

Target

2024-09-04_2ed2f972a5141f382c1e5010dcd2027c_poet-rat_snatch
Size

5.8MB
Sample

240904-1zqxfaycmc
MD5

2ed2f972a5141f382c1e5010dcd2027c
SHA1

a454908b57b60e3227c43ea3b482226bd3c774c2
SHA256

4f9f3aa3c9613ab95d881b48e7de68fd6662142cee727a4c0ab85aedf8eeb6d7
SHA512

65677ac571857575c07219dc5213db5d07f4f6a54c214f6aa09de5d233a53a7b63f8ebf30aa6109b10c99ad13481e75a2a80bbc06365af00de7ce0cd059ed078
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfJ:63CE/Xx4LKhdkvESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-09-04_2ed2f972a5141f382c1e5010dcd2027c_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  2ed2f972a5141f382c1e5010dcd2027c
- SHA1
  
  a454908b57b60e3227c43ea3b482226bd3c774c2
- SHA256
  
  4f9f3aa3c9613ab95d881b48e7de68fd6662142cee727a4c0ab85aedf8eeb6d7
- SHA512
  
  65677ac571857575c07219dc5213db5d07f4f6a54c214f6aa09de5d233a53a7b63f8ebf30aa6109b10c99ad13481e75a2a80bbc06365af00de7ce0cd059ed078
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfJ:63CE/Xx4LKhdkvESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2