cf5439f8417a085fa235fdeaace14180debeae7326b375410bb04e611977e6e6 | Triage

Sharing

General

Target

2024-10-14_feed7ac23257c3e6da84f958f1f8e7f1_poet-rat_snatch
Size

5.8MB
Sample

241015-aevf1sxcnq
MD5

feed7ac23257c3e6da84f958f1f8e7f1
SHA1

8a22a49501f5e7131a3610550d3fd27df8d48e45
SHA256

cf5439f8417a085fa235fdeaace14180debeae7326b375410bb04e611977e6e6
SHA512

760c8a475c274567b41256426d59f8a9de26aee46dbf8657081e51ef99d76a59e8d14181385c21643511974b2c5f6f98c554eb80c049a5083e2be4c8527960c8
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfc:63CE/Xx4LKhdkqESpU

Score

7^/10

Malware Config

Targets

- Target
  
  2024-10-14_feed7ac23257c3e6da84f958f1f8e7f1_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  feed7ac23257c3e6da84f958f1f8e7f1
- SHA1
  
  8a22a49501f5e7131a3610550d3fd27df8d48e45
- SHA256
  
  cf5439f8417a085fa235fdeaace14180debeae7326b375410bb04e611977e6e6
- SHA512
  
  760c8a475c274567b41256426d59f8a9de26aee46dbf8657081e51ef99d76a59e8d14181385c21643511974b2c5f6f98c554eb80c049a5083e2be4c8527960c8
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfc:63CE/Xx4LKhdkqESpU
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2