eb509e6f1c1430e104f8a206123123c84cdfac6dc6e01aeca8a7e084e3ed81f4 | Triage

Sharing

General

Target

2024-09-09_229ce7ef82f71e2fb047f750adb90ec7_poet-rat_snatch
Size

5.8MB
Sample

240909-a5mtvswdje
MD5

229ce7ef82f71e2fb047f750adb90ec7
SHA1

aa634dfe96137a1ff598b8606a533a8d4be83835
SHA256

eb509e6f1c1430e104f8a206123123c84cdfac6dc6e01aeca8a7e084e3ed81f4
SHA512

1a58ae95962154f67464511de8957eeb4ed4684605c0df2f0373e664da4523595704ed6d4d7e763a284296b4f30976038b8f42160a7b90d9df5810f9b29fc0ca
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfO:63CE/Xx4LKhdkmESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-09-09_229ce7ef82f71e2fb047f750adb90ec7_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  229ce7ef82f71e2fb047f750adb90ec7
- SHA1
  
  aa634dfe96137a1ff598b8606a533a8d4be83835
- SHA256
  
  eb509e6f1c1430e104f8a206123123c84cdfac6dc6e01aeca8a7e084e3ed81f4
- SHA512
  
  1a58ae95962154f67464511de8957eeb4ed4684605c0df2f0373e664da4523595704ed6d4d7e763a284296b4f30976038b8f42160a7b90d9df5810f9b29fc0ca
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfO:63CE/Xx4LKhdkmESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2