2135a6dadcf0a20822b77bf64595dcbec08f19f90691afb6fa4e01be1d155214 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-05_b429219be76ef248f0c0a7ac2eacdce2_poet-rat_snatch
Size

5.8MB
Sample

240906-adp5xawcpa
MD5

b429219be76ef248f0c0a7ac2eacdce2
SHA1

4408c57f5c4ebfa5cd9effa2a2a5fcf817814a52
SHA256

2135a6dadcf0a20822b77bf64595dcbec08f19f90691afb6fa4e01be1d155214
SHA512

0b80f32607fea14caebd1c2f47db96183c7c1803e37a23f3e8b5e8723d3e02edf74663f6d4470872955a793e21ca4829f55af2b78d892a52e197a42e7e033d85
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfw:63CE/Xx4LKhdkjESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-09-05_b429219be76ef248f0c0a7ac2eacdce2_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  b429219be76ef248f0c0a7ac2eacdce2
- SHA1
  
  4408c57f5c4ebfa5cd9effa2a2a5fcf817814a52
- SHA256
  
  2135a6dadcf0a20822b77bf64595dcbec08f19f90691afb6fa4e01be1d155214
- SHA512
  
  0b80f32607fea14caebd1c2f47db96183c7c1803e37a23f3e8b5e8723d3e02edf74663f6d4470872955a793e21ca4829f55af2b78d892a52e197a42e7e033d85
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfw:63CE/Xx4LKhdkjESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2