b47dff81443d67c05052c924a711fad84add51c03343c4105af030b1a13e7d47 | Triage

Sharing

General

Target

2024-09-27_aba698aefdd28320383892e8313efb45_poet-rat_snatch
Size

5.8MB
Sample

240927-nmdecszgnm
MD5

aba698aefdd28320383892e8313efb45
SHA1

7af74454c8a393454d16f7f1d84b0c04f5ee6c80
SHA256

b47dff81443d67c05052c924a711fad84add51c03343c4105af030b1a13e7d47
SHA512

a76df907e9de5e4c1b611b67ca5fd24bdfb32c674ce79b1ee1d041b4e2eb3afd2fa42db02d5f165a4ae8ce20c190aec717fdb10d091f25f109aeb73c1c27fe6e
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfS:63CE/Xx4LKhdkFESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-09-27_aba698aefdd28320383892e8313efb45_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  aba698aefdd28320383892e8313efb45
- SHA1
  
  7af74454c8a393454d16f7f1d84b0c04f5ee6c80
- SHA256
  
  b47dff81443d67c05052c924a711fad84add51c03343c4105af030b1a13e7d47
- SHA512
  
  a76df907e9de5e4c1b611b67ca5fd24bdfb32c674ce79b1ee1d041b4e2eb3afd2fa42db02d5f165a4ae8ce20c190aec717fdb10d091f25f109aeb73c1c27fe6e
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfS:63CE/Xx4LKhdkFESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2