2fdbd90e366c0cfc8a2667c984a5c996f4d24e3ecb16e133bec9b11afca33c4c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-04_ce05ca2306b16d07d548997af5b9ccc6_poet-rat_snatch
Size

5.8MB
Sample

241004-zq8v8awbkn
MD5

ce05ca2306b16d07d548997af5b9ccc6
SHA1

c07153b0c5bdf2f658f27872f60f9bbcffb9e657
SHA256

2fdbd90e366c0cfc8a2667c984a5c996f4d24e3ecb16e133bec9b11afca33c4c
SHA512

966c19dcd98c8fe8d663b16001036ae1ea412f7bb2e53e33a41837beddc394a7cd8b3c677eb3bd3ac1c27c572006c2c09cbbd10ee91dd5892cfeb72bfc799867
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfF:63CE/Xx4LKhdkFESp+

Score

7^/10

Malware Config

Targets

- Target
  
  2024-10-04_ce05ca2306b16d07d548997af5b9ccc6_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  ce05ca2306b16d07d548997af5b9ccc6
- SHA1
  
  c07153b0c5bdf2f658f27872f60f9bbcffb9e657
- SHA256
  
  2fdbd90e366c0cfc8a2667c984a5c996f4d24e3ecb16e133bec9b11afca33c4c
- SHA512
  
  966c19dcd98c8fe8d663b16001036ae1ea412f7bb2e53e33a41837beddc394a7cd8b3c677eb3bd3ac1c27c572006c2c09cbbd10ee91dd5892cfeb72bfc799867
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfF:63CE/Xx4LKhdkFESp+
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2