imminent | 47fec1f5cde05d36af0e3b7aa906b7a56cf622db151c72dd0dceedc021251c5c | Triage

Submit
Reports

Overview

overview

Static

static

5

47fec1f5cd...5c.exe

windows7_x64

47fec1f5cd...5c.exe

windows10-2004_x64

Sharing

General

Target

47fec1f5cde05d36af0e3b7aa906b7a56cf622db151c72dd0dceedc021251c5c
Size

1.2MB
Sample

220714-e934vsdhcr
MD5

9432bbcaab6aaded9550c649c7de5d11
SHA1

1933408859c383ffa40eb82f879f317c4bc3a067
SHA256

47fec1f5cde05d36af0e3b7aa906b7a56cf622db151c72dd0dceedc021251c5c
SHA512

0b974c79d3e13e26b05031bdd6e7990ae93d0854a45674e5edfb00bdafc73600d126acc169f456ef3b6b71ca1f7cd51272017e7576f966470235fa12c5f70fab

Score

10^/10

imminent persistence spyware trojan

Static task

static1

Behavioral task

behavioral1

Sample

47fec1f5cde05d36af0e3b7aa906b7a56cf622db151c72dd0dceedc021251c5c.exe

Resource

win7-20220414-en

imminent persistence spyware trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

47fec1f5cde05d36af0e3b7aa906b7a56cf622db151c72dd0dceedc021251c5c.exe

Resource

win10v2004-20220414-en

imminent persistence spyware trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  47fec1f5cde05d36af0e3b7aa906b7a56cf622db151c72dd0dceedc021251c5c
- Size
  
  1.2MB
- MD5
  
  9432bbcaab6aaded9550c649c7de5d11
- SHA1
  
  1933408859c383ffa40eb82f879f317c4bc3a067
- SHA256
  
  47fec1f5cde05d36af0e3b7aa906b7a56cf622db151c72dd0dceedc021251c5c
- SHA512
  
  0b974c79d3e13e26b05031bdd6e7990ae93d0854a45674e5edfb00bdafc73600d126acc169f456ef3b6b71ca1f7cd51272017e7576f966470235fa12c5f70fab
Score

10^/10

imminent persistence spyware trojan
- Imminent RAT
  Remote-access trojan based on Imminent Monitor remote admin software.
  trojan spyware imminent
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Uses the VBS compiler for execution
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scripting

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

imminentpersistencespywaretrojan

behavioral2

imminentpersistencespywaretrojan

© 2018-2025

Terms | Privacy