f4935e9a36ab7ca38906fa68710dc2cfa8863ac0526db0c27813e220321af45b | Triage

Sharing

General

Target

2024-10-10_9222902bb42b8c75cee1aa2c08323517_poet-rat_snatch
Size

5.8MB
Sample

241010-bpflaatbqg
MD5

9222902bb42b8c75cee1aa2c08323517
SHA1

13ed1b4bf5a18b98ed033e0ea8c6f03c2070e591
SHA256

f4935e9a36ab7ca38906fa68710dc2cfa8863ac0526db0c27813e220321af45b
SHA512

5c270765fe9979dc39e0d2764285f960a61867a828a5e0dcf29460a282f2383bc19addec22de04663e925ef2863c3a94c2e18ac7cd4fbe49126c4a829b604929
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZf:63CE/Xx4LKhdkrESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-10-10_9222902bb42b8c75cee1aa2c08323517_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  9222902bb42b8c75cee1aa2c08323517
- SHA1
  
  13ed1b4bf5a18b98ed033e0ea8c6f03c2070e591
- SHA256
  
  f4935e9a36ab7ca38906fa68710dc2cfa8863ac0526db0c27813e220321af45b
- SHA512
  
  5c270765fe9979dc39e0d2764285f960a61867a828a5e0dcf29460a282f2383bc19addec22de04663e925ef2863c3a94c2e18ac7cd4fbe49126c4a829b604929
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZf:63CE/Xx4LKhdkrESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2