561904f7b07ff182cd9e15ff15567341644a4756bb50854cafe9ce8192d5fda6

Analysis

max time kernel
116s
max time network
139s
platform
windows10-2004_x64
resource
win10v2004-20250314-en
resource tags

arch:x64arch:x86image:win10v2004-20250314-enlocale:en-usos:windows10-2004-x64system
submitted
30/03/2025, 21:05

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
Size

9.8MB
MD5

48667d0bf92ec8eb90045aaccb4fa65a
SHA1

7a3c1967556b8a8eb00a982fe3a6797f12219023
SHA256

561904f7b07ff182cd9e15ff15567341644a4756bb50854cafe9ce8192d5fda6
SHA512

acc29e23bfa633aa0e20cd0e6a6df58f30bfe4d6a7ad2d8970bce90bcd7ac89be8bb3062c7146b7e8773ad365263ec5a206a8e01c8468fcbedfb86ebc7fdf646
SSDEEP

196608:I+D5q1SGs2yRwtkpqShRBhR3hREhRbhR2hRn:DAkLRLRxRYRtRiRn

Score

6^/10

persistence

Malware Config

Signatures

Adds Run key to start application 2 TTPs 3 IoCs

persistence

Registry Run Keys / Startup Folder

T1547.001

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\rvDK = "c:\\Windows\\System32\\rvDK.exe"	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\fH = "c:\\Windows\\System32\\fH.exe"	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\DSicRPJna = "c:\\Windows\\System32\\DSicRPJna.exe"	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe

Drops desktop.ini file(s) 2 IoCs

description	ioc	Process
File created	C:\Program Files\desktop.ini	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Office16\1033\DataServices\DESKTOP.INI	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe

Drops file in System32 directory 3 IoCs

description	ioc	Process
File created	\??\c:\Windows\System32\rvDK.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	\??\c:\Windows\System32\fH.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	\??\c:\Windows\System32\DSicRPJna.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe

Drops file in Program Files directory 64 IoCs

description	ioc	Process
File created	C:\Program Files\Java\jdk-1.8\jre\bin\prism_sw.dll.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File opened for modification	C:\Program Files\Java\jre-1.8\bin\net.dll	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\images\contrast-black\HxCalendarAppList.targetsize-60_altform-unplated.png.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\de\PresentationFramework.resources.dll.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.ScreenSketch_10.1907.2471.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\ScreenSketchWide310x150Logo.scale-125_contrast-black.png	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.BingWeather_4.25.20211.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\153.png.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.MSPaint_6.1907.29027.0_x64__8wekyb3d8bbwe\Assets\Dial\Undo.png.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.MSPaint_6.1907.29027.0_x64__8wekyb3d8bbwe\PaintStudio.Model.CX.dll	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.XboxGameOverlay_1.46.11001.0_neutral_~_8wekyb3d8bbwe\AppxSignature.p7x	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\images\HxA-Generic-Light.scale-200.png.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\WindowsBase.dll.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\Microsoft Office\root\Office16\ADDINS\Power Map Excel Add-in\EXCELPLUGINSHELL.DLL.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.XboxApp_48.49.31001.0_neutral_split.scale-125_8wekyb3d8bbwe\AppxManifest.xml.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\images\FetchingMail-Dark.scale-125.png.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\Java\jdk-1.8\bin\api-ms-win-core-localization-l1-2-0.dll.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.19071.19011.0_x64__8wekyb3d8bbwe\Assets\contrast-white\AppList.targetsize-96_altform-unplated_contrast-white_devicefamily-colorfulunplated.png.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\Microsoft Office\root\Office16\1033\PROTTPLV.XLS.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.27\System.Net.WebSockets.Client.dll	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\locale\ug\LC_MESSAGES\vlc.mo	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.Microsoft3DViewer_6.1908.2042.0_x64__8wekyb3d8bbwe\Common.View.UWP\Strings\uk-UA\View3d\3DViewerProductDescription-universal.xml	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.27\System.Net.Sockets.dll.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\6.0.27\ja\PresentationCore.resources.dll	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\O365ProPlusR_SubTrial4-ul-oob.xrm-ms.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File opened for modification	C:\Program Files\Microsoft Office\root\Licenses16\ProjectProDemoR_BypassTrial180-ul-oob.xrm-ms	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\VideoLAN\VLC\lua\http\css\ui-lightness\images\ui-icons_ffffff_256x240.png.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.StorePurchaseApp_11811.1001.18.0_x64__8wekyb3d8bbwe\Assets\AppTiles\contrast-white\SplashScreen.scale-200.png.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1906.55.0_x64__8wekyb3d8bbwe\AppxBlockMap.xml	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\images\contrast-white\HxMailLargeTile.scale-200.png.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.People_10.1902.633.0_neutral_split.scale-125_8wekyb3d8bbwe\Assets\contrast-black\PeopleWideTile.scale-125.png.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.BingWeather_4.25.20211.0_x64__8wekyb3d8bbwe\Assets\AppTiles\WeatherIcons\30x30\156.png	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.HEIFImageExtension_1.0.22742.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppList.targetsize-96_altform-unplated_contrast-black.png	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1906.55.0_x64__8wekyb3d8bbwe\Assets\Standard.targetsize-16_contrast-black.png	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_2.34.28001.0_x64__8wekyb3d8bbwe\Assets\MixerBranding\mixer_logo.png.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.XboxIdentityProvider_12.50.6001.0_x64__8wekyb3d8bbwe\Assets\xbox_live_logo_black.png.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\main\zh-changjei.xml	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\Microsoft Office\root\Office16\MSO.FRAMEPROTOCOLWIN32.DLL.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\Microsoft Office\root\Office16\MSZIP.DIC.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.Office.OneNote_16001.12026.20112.0_x64__8wekyb3d8bbwe\images\OneNoteNewNoteWideTile.scale-200.png.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\7.0.16\Microsoft.CSharp.dll.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.WindowsDesktop.App\7.0.16\it\PresentationCore.resources.dll	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_2.34.28001.0_neutral_split.scale-100_8wekyb3d8bbwe\AppxSignature.p7x.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19071.19011.0_x64__8wekyb3d8bbwe\ImmersiveVideoPlayback\Content\Shaders\LoadedModelShaders\StandardLighting.hlsl	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\images\contrast-black\GenericMailLargeTile.scale-125.png.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\Mozilla Firefox\vcruntime140_1.dll.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\DeletedAllUserPackages\Microsoft.DesktopAppInstaller_1.0.30251.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppPackageWideTile.scale-100.png	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.Office.OneNote_16001.12026.20112.0_x64__8wekyb3d8bbwe\images\contrast-black\OneNoteSectionGroupWideTile.scale-200.png	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.Office.OneNote_16001.12026.20112.0_x64__8wekyb3d8bbwe\react.uwp.dll	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_10.1906.2182.0_x64__8wekyb3d8bbwe\Assets\AlarmsAppList.targetsize-36_altform-lightunplated.png	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\Common Files\microsoft shared\ink\fsdefinitions\osknumpad.xml.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\Java\jdk-1.8\jre\legal\javafx\public_suffix.md.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\Microsoft Office\root\rsod\osmuxmui.msi.16.en-us.boot.tree.dat.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File opened for modification	C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\THEMES16\BLUEPRNT\BLUEPRNT.INF	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.Office.OneNote_16001.12026.20112.0_x64__8wekyb3d8bbwe\images\OneNoteNewNoteSmallTile.scale-150.png	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.People_10.1902.633.0_x64__8wekyb3d8bbwe\PeopleApp.exe.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\images\contrast-black\HxA-Google.scale-200.png.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\6.0.27\System.Reflection.DispatchProxy.dll.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\Common Files\System\msadc\msdaremr.dll	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File opened for modification	C:\Program Files\Java\jre-1.8\lib\security\trusted.libraries	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File opened for modification	C:\Program Files\VideoLAN\VLC\plugins\video_filter\libcroppadd_plugin.dll	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\Microsoft.VP9VideoExtensions_1.0.22681.0_x64__8wekyb3d8bbwe\Assets\contrast-black\AppList.targetsize-96_altform-unplated_contrast-black.png	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe\images\EmptySearch.scale-125.png.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File opened for modification	C:\Program Files\dotnet\shared\Microsoft.NETCore.App\7.0.16\System.Runtime.CompilerServices.Unsafe.dll	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\Microsoft Office\root\Licenses16\SkypeforBusiness2019R_Retail-ppd.xrm-ms.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
File created	C:\Program Files\Microsoft Office\root\Office16\1033\BHOINTL.DLL.exe	2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe

C:\Users\Admin\AppData\Local\Temp\2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe
"C:\Users\Admin\AppData\Local\Temp\2025-03-30_48667d0bf92ec8eb90045aaccb4fa65a_cobalt-strike_poet-rat_sliver_snatch.exe"
1⤵
- Adds Run key to start application
- Drops desktop.ini file(s)
- Drops file in System32 directory
- Drops file in Program Files directory
PID:6056

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

T1547

Registry Run Keys / Startup Folder

T1547.001

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Program Files\7-Zip\7-zip.dll.exe

Filesize
10.5MB

MD5
304f605c38f9472cc6b7fd04e2cd2efb

SHA1
497ca59f593b578625e4b46016b2b27a08b9baa1

SHA256
ced70ccd933419aae355f3021fe4247c9cdbfb8e7ae87a207825893971d20477

SHA512
fb2ba1205bfae2eaf095658a4186ad31aed941f90d2bd189b1ec6e81014d2a4db5c519cebf56b23ea35e17c1de3dd0abade8f1b66b70f0ba6aa0db18f84acee2

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads