General

  • Target

    3c4a92b18d969dc610d6ed1d3e73dbbe176310afb5dfb81ec306b90d96526206

  • Size

    321KB

  • Sample

    220703-jvfggabcal

  • MD5

    3e81b3743b1b34ede2ad6b0783b747fc

  • SHA1

    010333b924790625fb557ed234e026cbd2ebceca

  • SHA256

    3c4a92b18d969dc610d6ed1d3e73dbbe176310afb5dfb81ec306b90d96526206

  • SHA512

    726dd459b510f8137a516a6db2d04929994a5ccf6e30ca2098442a95026efe5b42dc6a59d9aa815bc0c15f3f5bf7d7f87dfb063a821449b6f04cb2223960e42e

Score
10/10

Malware Config

Targets

    • Target

      3c4a92b18d969dc610d6ed1d3e73dbbe176310afb5dfb81ec306b90d96526206

    • Size

      321KB

    • MD5

      3e81b3743b1b34ede2ad6b0783b747fc

    • SHA1

      010333b924790625fb557ed234e026cbd2ebceca

    • SHA256

      3c4a92b18d969dc610d6ed1d3e73dbbe176310afb5dfb81ec306b90d96526206

    • SHA512

      726dd459b510f8137a516a6db2d04929994a5ccf6e30ca2098442a95026efe5b42dc6a59d9aa815bc0c15f3f5bf7d7f87dfb063a821449b6f04cb2223960e42e

    Score
    10/10
    • Imminent RAT

      Remote-access trojan based on Imminent Monitor remote admin software.

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Loads dropped DLL

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v6

Tasks