6ca958aac6a9631c1b8411f1e3ea310cd998dc5ab4d69cd158ad1f37ad850270 | Triage

Sharing

General

Target

2024-09-05_af982ecc8e08425c7de47094b5984a7a_poet-rat_snatch
Size

5.8MB
Sample

240905-bt5qza1gja
MD5

af982ecc8e08425c7de47094b5984a7a
SHA1

92d1d81f8954e92b77ecaba8238902a20688f32b
SHA256

6ca958aac6a9631c1b8411f1e3ea310cd998dc5ab4d69cd158ad1f37ad850270
SHA512

92f40832c948cced0ef91fc3e8e0ed15ec09ad24eb8329e380fc08c1cedb9222ace5093264a4708c0f064701add1256b0ac487c5070da6544bdfad42fa30a60e
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfi:63CE/Xx4LKhdkIESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-09-05_af982ecc8e08425c7de47094b5984a7a_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  af982ecc8e08425c7de47094b5984a7a
- SHA1
  
  92d1d81f8954e92b77ecaba8238902a20688f32b
- SHA256
  
  6ca958aac6a9631c1b8411f1e3ea310cd998dc5ab4d69cd158ad1f37ad850270
- SHA512
  
  92f40832c948cced0ef91fc3e8e0ed15ec09ad24eb8329e380fc08c1cedb9222ace5093264a4708c0f064701add1256b0ac487c5070da6544bdfad42fa30a60e
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfi:63CE/Xx4LKhdkIESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2