0e76ef6d37a1e5057f482398903c71ce692fd5ad469cf2c8cf106ee7c3a541a6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-05_46960cb93296a7d0ff8f7d37686dc6f2_poet-rat_snatch
Size

5.8MB
Sample

240906-aawhhswbnd
MD5

46960cb93296a7d0ff8f7d37686dc6f2
SHA1

e76d95477bd56544bcdc7dadd7feba87f749a76f
SHA256

0e76ef6d37a1e5057f482398903c71ce692fd5ad469cf2c8cf106ee7c3a541a6
SHA512

3c31f47a3c4dafac315d6f335d547e525cdadc383f619f4d4eaf470136844d2ace3a842959c1042e930410d4c25e14728824b806869b487dedd207459e7a2875
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfv:63CE/Xx4LKhdkvESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-09-05_46960cb93296a7d0ff8f7d37686dc6f2_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  46960cb93296a7d0ff8f7d37686dc6f2
- SHA1
  
  e76d95477bd56544bcdc7dadd7feba87f749a76f
- SHA256
  
  0e76ef6d37a1e5057f482398903c71ce692fd5ad469cf2c8cf106ee7c3a541a6
- SHA512
  
  3c31f47a3c4dafac315d6f335d547e525cdadc383f619f4d4eaf470136844d2ace3a842959c1042e930410d4c25e14728824b806869b487dedd207459e7a2875
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfv:63CE/Xx4LKhdkvESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2