61264682489625aac0497f6b45e7a8c872f8ba01db28a2a23ad674011ce9cf5d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-03_424ea2099d96d53d399daa6d2521869f_poet-rat_snatch
Size

5.8MB
Sample

241004-aczb7atekl
MD5

424ea2099d96d53d399daa6d2521869f
SHA1

d4d7dce4731ba6c390247c00d291be916679d3e9
SHA256

61264682489625aac0497f6b45e7a8c872f8ba01db28a2a23ad674011ce9cf5d
SHA512

4fef77a959c395bb823e9a964cbc3bc41c8bea0a3df78dc26643685748afe14b765f4b98e74e9b91654b392c605f1e6a9dc1bfa0526291a2fd20ea6eb39a3c4a
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZf1:63CE/Xx4LKhdkLESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-10-03_424ea2099d96d53d399daa6d2521869f_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  424ea2099d96d53d399daa6d2521869f
- SHA1
  
  d4d7dce4731ba6c390247c00d291be916679d3e9
- SHA256
  
  61264682489625aac0497f6b45e7a8c872f8ba01db28a2a23ad674011ce9cf5d
- SHA512
  
  4fef77a959c395bb823e9a964cbc3bc41c8bea0a3df78dc26643685748afe14b765f4b98e74e9b91654b392c605f1e6a9dc1bfa0526291a2fd20ea6eb39a3c4a
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZf1:63CE/Xx4LKhdkLESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2