General
-
Target
2024-10-31_312d6724e0481537bb7f7767d0f4e1f9_poet-rat_snatch
-
Size
9.7MB
-
Sample
241031-2dlahawjfq
-
MD5
312d6724e0481537bb7f7767d0f4e1f9
-
SHA1
bc66ccc2df7fe1b927ebe8d5f5194d7a3071246d
-
SHA256
0a2804504d007506cb9f6264549701b475839fe19e882648f7006fc293e4bbe3
-
SHA512
3fd74a27110c4a7300bfb60356c5a10d74691d49e31e4bfd71070f9c6bf2dca770ff80ddc8c477757533b306579e72cb55a4fcd44f0ee9689a9637804a9365d2
-
SSDEEP
98304:xIyByOCYvDXv3JE/7FsHEuUVlgE6zPLMu:SUVCeEuU7Z
Static task
static1
Behavioral task
behavioral1
Sample
2024-10-31_312d6724e0481537bb7f7767d0f4e1f9_poet-rat_snatch.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
2024-10-31_312d6724e0481537bb7f7767d0f4e1f9_poet-rat_snatch.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
2024-10-31_312d6724e0481537bb7f7767d0f4e1f9_poet-rat_snatch
-
Size
9.7MB
-
MD5
312d6724e0481537bb7f7767d0f4e1f9
-
SHA1
bc66ccc2df7fe1b927ebe8d5f5194d7a3071246d
-
SHA256
0a2804504d007506cb9f6264549701b475839fe19e882648f7006fc293e4bbe3
-
SHA512
3fd74a27110c4a7300bfb60356c5a10d74691d49e31e4bfd71070f9c6bf2dca770ff80ddc8c477757533b306579e72cb55a4fcd44f0ee9689a9637804a9365d2
-
SSDEEP
98304:xIyByOCYvDXv3JE/7FsHEuUVlgE6zPLMu:SUVCeEuU7Z
Score7/10-
Unsecured Credentials: Credentials In Files
Steal credentials from unsecured files.
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Drops file in System32 directory
-