48baf065c951c3eeb302b699c7adc5959345cd961f34bb8cfdcb21ad49e7c424 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-08_f9ae8721db3249358cf14ce25eec07cd_poet-rat_snatch
Size

5.8MB
Sample

240908-e94emaxbnp
MD5

f9ae8721db3249358cf14ce25eec07cd
SHA1

4c8ad611b5b2f19b7c3eaa11285652d6de100a3d
SHA256

48baf065c951c3eeb302b699c7adc5959345cd961f34bb8cfdcb21ad49e7c424
SHA512

57fd8cc90bfcb103209954725f2676687b79a365b46a074aed92f95827d7833304ce157db56a0908a3076737293e6b04aa651141c30e9c45977347d5ba00721a
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfn:63CE/Xx4LKhdkNESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-09-08_f9ae8721db3249358cf14ce25eec07cd_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  f9ae8721db3249358cf14ce25eec07cd
- SHA1
  
  4c8ad611b5b2f19b7c3eaa11285652d6de100a3d
- SHA256
  
  48baf065c951c3eeb302b699c7adc5959345cd961f34bb8cfdcb21ad49e7c424
- SHA512
  
  57fd8cc90bfcb103209954725f2676687b79a365b46a074aed92f95827d7833304ce157db56a0908a3076737293e6b04aa651141c30e9c45977347d5ba00721a
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfn:63CE/Xx4LKhdkNESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2