ce30cb27992e290dee3dd49f65ee214bcab884ebf2bceea8c4292af4794fa276 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-13_5ea072eb1c0c21a41e614bf4fe51f108_poet-rat_snatch
Size

5.8MB
Sample

240913-ecep1asenq
MD5

5ea072eb1c0c21a41e614bf4fe51f108
SHA1

24e82082c44d3970a783b9cfcdfa192de22eff36
SHA256

ce30cb27992e290dee3dd49f65ee214bcab884ebf2bceea8c4292af4794fa276
SHA512

ae12cb52cdeee95d404bc3201fbdb676b395efb026dd0d5d12c465bf5e3adb8e7c59ad831a7ea24e0117eee527b0b9a8c1f6284e1016be94768decf6de2a606c
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfX:63CE/Xx4LKhdkiESpX

Score

7^/10

Malware Config

Targets

- Target
  
  2024-09-13_5ea072eb1c0c21a41e614bf4fe51f108_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  5ea072eb1c0c21a41e614bf4fe51f108
- SHA1
  
  24e82082c44d3970a783b9cfcdfa192de22eff36
- SHA256
  
  ce30cb27992e290dee3dd49f65ee214bcab884ebf2bceea8c4292af4794fa276
- SHA512
  
  ae12cb52cdeee95d404bc3201fbdb676b395efb026dd0d5d12c465bf5e3adb8e7c59ad831a7ea24e0117eee527b0b9a8c1f6284e1016be94768decf6de2a606c
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfX:63CE/Xx4LKhdkiESpX
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2