4c9c98242092cd5910bac7bb6b53b795a8421ca303b0271fe6f329e1c337c693

Analysis

max time kernel
124s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20250217-en
resource tags

arch:x64arch:x86image:win10v2004-20250217-enlocale:en-usos:windows10-2004-x64system
submitted
08/03/2025, 12:49

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

2025-03-08_d3fd3c0abb49d2d4d15fcec1755a3bb5_poet-rat_sliver_snatch.exe
Size

13.0MB
MD5

d3fd3c0abb49d2d4d15fcec1755a3bb5
SHA1

609f42f6eeab23b6772dc0a819f4dc47ec57269d
SHA256

4c9c98242092cd5910bac7bb6b53b795a8421ca303b0271fe6f329e1c337c693
SHA512

6e33e733fdc2fe3357b5a25755ad00e480e650daa9e3c043ed75e6bf865ddb8be77496fd5b9fa59721cf0d2d62bb79397406032bc4b8b75a54e53ff58935494f
SSDEEP

196608:GKouOB/7eXB94InJrRx/2Xh0cGf7kz6bIHEvTVPEBBJsv:zIYB9trWh0BOabVPmsv

Score

1^/10

Malware Config

Signatures

GoLang User-Agent 39 IoCs

Uses default user-agent string defined by GoLang HTTP packages.

description	flow	ioc
HTTP User-Agent header	85	Go-http-client/1.1
HTTP User-Agent header	5	Go-http-client/1.1
HTTP User-Agent header	7	Go-http-client/1.1
HTTP User-Agent header	31	Go-http-client/1.1
HTTP User-Agent header	74	Go-http-client/1.1
HTTP User-Agent header	82	Go-http-client/1.1
HTTP User-Agent header	91	Go-http-client/1.1
HTTP User-Agent header	105	Go-http-client/1.1
HTTP User-Agent header	106	Go-http-client/1.1
HTTP User-Agent header	90	Go-http-client/1.1
HTTP User-Agent header	4	Go-http-client/1.1
HTTP User-Agent header	75	Go-http-client/1.1
HTTP User-Agent header	78	Go-http-client/1.1
HTTP User-Agent header	84	Go-http-client/1.1
HTTP User-Agent header	100	Go-http-client/1.1
HTTP User-Agent header	94	Go-http-client/1.1
HTTP User-Agent header	95	Go-http-client/1.1
HTTP User-Agent header	27	Go-http-client/1.1
HTTP User-Agent header	80	Go-http-client/1.1
HTTP User-Agent header	93	Go-http-client/1.1
HTTP User-Agent header	98	Go-http-client/1.1
HTTP User-Agent header	104	Go-http-client/1.1
HTTP User-Agent header	11	Go-http-client/1.1
HTTP User-Agent header	79	Go-http-client/1.1
HTTP User-Agent header	81	Go-http-client/1.1
HTTP User-Agent header	86	Go-http-client/1.1
HTTP User-Agent header	6	Go-http-client/1.1
HTTP User-Agent header	12	Go-http-client/1.1
HTTP User-Agent header	28	Go-http-client/1.1
HTTP User-Agent header	77	Go-http-client/1.1
HTTP User-Agent header	99	Go-http-client/1.1
HTTP User-Agent header	39	Go-http-client/1.1
HTTP User-Agent header	76	Go-http-client/1.1
HTTP User-Agent header	87	Go-http-client/1.1
HTTP User-Agent header	96	Go-http-client/1.1
HTTP User-Agent header	30	Go-http-client/1.1
HTTP User-Agent header	38	Go-http-client/1.1
HTTP User-Agent header	73	Go-http-client/1.1
HTTP User-Agent header	83	Go-http-client/1.1

C:\Users\Admin\AppData\Local\Temp\2025-03-08_d3fd3c0abb49d2d4d15fcec1755a3bb5_poet-rat_sliver_snatch.exe
"C:\Users\Admin\AppData\Local\Temp\2025-03-08_d3fd3c0abb49d2d4d15fcec1755a3bb5_poet-rat_sliver_snatch.exe"
1⤵
PID:4336

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads