7ea5a03af9fecfba4b09b7cac5cd23de4df543739012846908e5b673e7851540 | Triage

Sharing

General

Target

2024-10-02_71f11f73dee019f0b4fd53e4ed11cb0a_poet-rat_snatch
Size

5.8MB
Sample

241002-btrt4szfrm
MD5

71f11f73dee019f0b4fd53e4ed11cb0a
SHA1

6879bbd7892095b2868697a5fb2173f751f5a6f2
SHA256

7ea5a03af9fecfba4b09b7cac5cd23de4df543739012846908e5b673e7851540
SHA512

34f7efc0ae0e87ee60ad75de9e57e2bb875640855820344200165bf585472bf4297024954bbe457cf812be2b647bb55094b94d57fe0aa945de9d610e8d5fc883
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZf/:63CE/Xx4LKhdkyESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-10-02_71f11f73dee019f0b4fd53e4ed11cb0a_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  71f11f73dee019f0b4fd53e4ed11cb0a
- SHA1
  
  6879bbd7892095b2868697a5fb2173f751f5a6f2
- SHA256
  
  7ea5a03af9fecfba4b09b7cac5cd23de4df543739012846908e5b673e7851540
- SHA512
  
  34f7efc0ae0e87ee60ad75de9e57e2bb875640855820344200165bf585472bf4297024954bbe457cf812be2b647bb55094b94d57fe0aa945de9d610e8d5fc883
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZf/:63CE/Xx4LKhdkyESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2