imminent | 51fc1113c149e1fbd62bc5aeaa10886f09fb9c369f177d9f7c7c797e0409a1de | Triage

Sharing

General

Target

51fc1113c149e1fbd62bc5aeaa10886f09fb9c369f177d9f7c7c797e0409a1de
Size

652KB
Sample

220609-qjdl3acgg4
MD5

8518ad447419a4e30b7d19c62953ccaf
SHA1

16561040d256fee7fde865c5c931358de7e9200c
SHA256

51fc1113c149e1fbd62bc5aeaa10886f09fb9c369f177d9f7c7c797e0409a1de
SHA512

9e77023633fdef68ae66fcc606a1bf0a073de44c8cec3655ff7a0092a84a4f510d0d7f34d634d30ce5017669847134aeb22ad648381bc2919d58676544177b52

Score

10^/10

imminent persistence spyware trojan

Malware Config

Targets

- Target
  
  51fc1113c149e1fbd62bc5aeaa10886f09fb9c369f177d9f7c7c797e0409a1de
- Size
  
  652KB
- MD5
  
  8518ad447419a4e30b7d19c62953ccaf
- SHA1
  
  16561040d256fee7fde865c5c931358de7e9200c
- SHA256
  
  51fc1113c149e1fbd62bc5aeaa10886f09fb9c369f177d9f7c7c797e0409a1de
- SHA512
  
  9e77023633fdef68ae66fcc606a1bf0a073de44c8cec3655ff7a0092a84a4f510d0d7f34d634d30ce5017669847134aeb22ad648381bc2919d58676544177b52
Score

10^/10

imminent persistence spyware trojan
- Imminent RAT
  Remote-access trojan based on Imminent Monitor remote admin software.
  trojan spyware imminent
- Adds Run key to start application
  persistence
- Drops desktop.ini file(s)
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

imminentpersistencespywaretrojan

behavioral2

imminentpersistencespywaretrojan