laplas | a6b21c396a5e0875875732d93d048176cf9ad78e34e8a08615590bcd90714c96 | Triage

Sharing

General

Target

2025-03-10_5f4ef6304cb9a61dda50aedf6b8c610f_frostygoop_poet-rat_sliver_snatch
Size

4.6MB
Sample

250310-x97fdswjw3
MD5

5f4ef6304cb9a61dda50aedf6b8c610f
SHA1

22f8650d837639d5111458bef3c1f2452f4e7ca1
SHA256

a6b21c396a5e0875875732d93d048176cf9ad78e34e8a08615590bcd90714c96
SHA512

a9b9afd3da4520af570df62cecdc8e9e6b31730a71b13fd1ce7f681667be4f5774358cebd7126c3efe39ea8b101f24e39795b91507f936c392e5c44d2548446d
SSDEEP

49152:X/7Fss80KlU0zp+Z9vAaE5FKY/t76oUzrUA/AOiyjrbsn3zvSn9rMPN/u9Mj9ln6:v5sVPV+ZpoUzp/Tknj5BaXOY

Score

10^/10

laplas discovery

Malware Config

Targets

- Target
  
  2025-03-10_5f4ef6304cb9a61dda50aedf6b8c610f_frostygoop_poet-rat_sliver_snatch
- Size
  
  4.6MB
- MD5
  
  5f4ef6304cb9a61dda50aedf6b8c610f
- SHA1
  
  22f8650d837639d5111458bef3c1f2452f4e7ca1
- SHA256
  
  a6b21c396a5e0875875732d93d048176cf9ad78e34e8a08615590bcd90714c96
- SHA512
  
  a9b9afd3da4520af570df62cecdc8e9e6b31730a71b13fd1ce7f681667be4f5774358cebd7126c3efe39ea8b101f24e39795b91507f936c392e5c44d2548446d
- SSDEEP
  
  49152:X/7Fss80KlU0zp+Z9vAaE5FKY/t76oUzrUA/AOiyjrbsn3zvSn9rMPN/u9Mj9ln6:v5sVPV+ZpoUzp/Tknj5BaXOY
Score

7^/10

discovery
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2