imminent | 0e44d2322791910c8753f89a387dfa576c6bda0c73b5bd62ca689cf10ca96c85 | Triage

Sharing

General

Target

0e44d2322791910c8753f89a387dfa576c6bda0c73b5bd62ca689cf10ca96c85
Size

354KB
Sample

220630-xq9reaahb6
MD5

3a79ab637f283d9f5c69ceb7237ebcfb
SHA1

6c79951dff87f8e102571a49c2d7ac7621321d97
SHA256

0e44d2322791910c8753f89a387dfa576c6bda0c73b5bd62ca689cf10ca96c85
SHA512

e550d50b0d3b78e3b655e02e70f00f08573a89138b86abb98c3a848f149d98cf49f62fd01aeb836f55dc7a05f72fa7dc4d6b22dad7d4c893b88622f6f6167d05

Score

10^/10

imminent persistence spyware trojan

Malware Config

Targets

- Target
  
  0e44d2322791910c8753f89a387dfa576c6bda0c73b5bd62ca689cf10ca96c85
- Size
  
  354KB
- MD5
  
  3a79ab637f283d9f5c69ceb7237ebcfb
- SHA1
  
  6c79951dff87f8e102571a49c2d7ac7621321d97
- SHA256
  
  0e44d2322791910c8753f89a387dfa576c6bda0c73b5bd62ca689cf10ca96c85
- SHA512
  
  e550d50b0d3b78e3b655e02e70f00f08573a89138b86abb98c3a848f149d98cf49f62fd01aeb836f55dc7a05f72fa7dc4d6b22dad7d4c893b88622f6f6167d05
Score

10^/10

imminent persistence spyware trojan
- Imminent RAT
  Remote-access trojan based on Imminent Monitor remote admin software.
  trojan spyware imminent
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

imminentpersistencespywaretrojan

behavioral2