a6c5b1b3321a1febbb622aed09489f3dce1099dbeb8cbe336245d8dca375d069 | Triage

Sharing

General

Target

2024-10-03_2fa7a9dd5aaeafb5b5b307e02b85f09b_poet-rat_snatch
Size

5.8MB
Sample

241003-aw5nbayepb
MD5

2fa7a9dd5aaeafb5b5b307e02b85f09b
SHA1

c219f7b58063627bbdef4d94f44aefda8f3e8393
SHA256

a6c5b1b3321a1febbb622aed09489f3dce1099dbeb8cbe336245d8dca375d069
SHA512

806177ef4da177d7d092a9fe81bc99541b16ffd266ce27a00b5e5903f12bc081bac2665ce98a00af20c10ee8aa01692209442f3fef11a8579a3b5f07fd369b68
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfZ:63CE/Xx4LKhdksESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-10-03_2fa7a9dd5aaeafb5b5b307e02b85f09b_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  2fa7a9dd5aaeafb5b5b307e02b85f09b
- SHA1
  
  c219f7b58063627bbdef4d94f44aefda8f3e8393
- SHA256
  
  a6c5b1b3321a1febbb622aed09489f3dce1099dbeb8cbe336245d8dca375d069
- SHA512
  
  806177ef4da177d7d092a9fe81bc99541b16ffd266ce27a00b5e5903f12bc081bac2665ce98a00af20c10ee8aa01692209442f3fef11a8579a3b5f07fd369b68
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfZ:63CE/Xx4LKhdksESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2