9ac1ea44d927c995dc6f92a90d3b83e5fcbd698aafa63c1958c01088fd4c4976 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-19_437eaf46f7458f9c5466050a7a845ec1_poet-rat_snatch
Size

5.8MB
Sample

240919-msc54svdpk
MD5

437eaf46f7458f9c5466050a7a845ec1
SHA1

b2f7f8b40607e4daa6f22b5f69f148c9f861a711
SHA256

9ac1ea44d927c995dc6f92a90d3b83e5fcbd698aafa63c1958c01088fd4c4976
SHA512

b20a795ce40d07621b34fdf77ab7a97e841cf71c39981f294f20c0ca791b769ed00223f08e183becdf8291c665878a52fd387206bd37889795125b36035d90a3
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfI:63CE/Xx4LKhdklESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-09-19_437eaf46f7458f9c5466050a7a845ec1_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  437eaf46f7458f9c5466050a7a845ec1
- SHA1
  
  b2f7f8b40607e4daa6f22b5f69f148c9f861a711
- SHA256
  
  9ac1ea44d927c995dc6f92a90d3b83e5fcbd698aafa63c1958c01088fd4c4976
- SHA512
  
  b20a795ce40d07621b34fdf77ab7a97e841cf71c39981f294f20c0ca791b769ed00223f08e183becdf8291c665878a52fd387206bd37889795125b36035d90a3
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfI:63CE/Xx4LKhdklESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2