a729214ddda32377e8a42596e9eb8e37501d1252384ec03eb719bdf3061ab8d7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-05_9827dd3f8fadcbb0214ca4e5d7f5b70f_poet-rat_snatch
Size

5.8MB
Sample

241005-e133havgpl
MD5

9827dd3f8fadcbb0214ca4e5d7f5b70f
SHA1

7ed26663d9e72b9e70a27710f625c428526c144b
SHA256

a729214ddda32377e8a42596e9eb8e37501d1252384ec03eb719bdf3061ab8d7
SHA512

8b116679bf855d46f15dcca631364545464ec1a9db9e05bfe94cea99b8f63d1cd92266fd2bb708f3a4be5eec7ef8ddee7b17b850c2c52c8d3246b74160883e5b
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfx:63CE/Xx4LKhdkCESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-10-05_9827dd3f8fadcbb0214ca4e5d7f5b70f_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  9827dd3f8fadcbb0214ca4e5d7f5b70f
- SHA1
  
  7ed26663d9e72b9e70a27710f625c428526c144b
- SHA256
  
  a729214ddda32377e8a42596e9eb8e37501d1252384ec03eb719bdf3061ab8d7
- SHA512
  
  8b116679bf855d46f15dcca631364545464ec1a9db9e05bfe94cea99b8f63d1cd92266fd2bb708f3a4be5eec7ef8ddee7b17b850c2c52c8d3246b74160883e5b
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfx:63CE/Xx4LKhdkCESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2