imminent | 57f5e7542423b77332d937faa7cc616227641b82596d61505f54e327312260fd | Triage

Submit
Reports

Overview

overview

Static

static

57f5e75424...fd.exe

windows7-x64

57f5e75424...fd.exe

windows10-2004-x64

Sharing

General

Target

57f5e7542423b77332d937faa7cc616227641b82596d61505f54e327312260fd
Size

561KB
Sample

220724-vmfm2sbgh8
MD5

3b5ddf6236f3d325240c40a19d06b176
SHA1

bfbd87db679b47ae722a7583bf07ba77919b0f8f
SHA256

57f5e7542423b77332d937faa7cc616227641b82596d61505f54e327312260fd
SHA512

4f03c801ab44f85d5dcb25ac083692c296c662985e88f2fc7851e0399ca9a39d78ae7eb48e62fe4e9bdb2ffe71b1b0e52de20621a1bafb083b3a4cd303e6f8e3

Score

10^/10

imminent persistence spyware trojan

Static task

static1

Behavioral task

behavioral1

Sample

57f5e7542423b77332d937faa7cc616227641b82596d61505f54e327312260fd.exe

Resource

win7-20220715-en

imminent persistence spyware trojan

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

57f5e7542423b77332d937faa7cc616227641b82596d61505f54e327312260fd.exe

Resource

win10v2004-20220721-en

imminent persistence spyware trojan

windows10-2004-x64

17 signatures

150 seconds

Malware Config

Targets

- Target
  
  57f5e7542423b77332d937faa7cc616227641b82596d61505f54e327312260fd
- Size
  
  561KB
- MD5
  
  3b5ddf6236f3d325240c40a19d06b176
- SHA1
  
  bfbd87db679b47ae722a7583bf07ba77919b0f8f
- SHA256
  
  57f5e7542423b77332d937faa7cc616227641b82596d61505f54e327312260fd
- SHA512
  
  4f03c801ab44f85d5dcb25ac083692c296c662985e88f2fc7851e0399ca9a39d78ae7eb48e62fe4e9bdb2ffe71b1b0e52de20621a1bafb083b3a4cd303e6f8e3
Score

10^/10

imminent persistence spyware trojan
- Imminent RAT
  Remote-access trojan based on Imminent Monitor remote admin software.
  trojan spyware imminent
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops desktop.ini file(s)
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

imminentpersistencespywaretrojan

behavioral2

imminentpersistencespywaretrojan

© 2018-2025

Terms | Privacy