Overview

overview

10

Static

static

10b81639c0...c5.exe

windows7-x64

10

10b81639c0...c5.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    10b81639c0629fff525883875b7cc4e1a01afec8c9138f06abe7e4e5627d00c5

  • Size

    419KB

  • Sample

    221119-dkm6nsfa2t

  • MD5

    34c755570f35d8443baf585848a7d6b0

  • SHA1

    a80fb72c042954976a6fbad53d62fd9578464f01

  • SHA256

    10b81639c0629fff525883875b7cc4e1a01afec8c9138f06abe7e4e5627d00c5

  • SHA512

    ea52b23d4e6e88255137a066ce642bdd74a6521a1d92395e5d70169f79c97838314d37d07c6d4082f3bf246c5da159bdcc783d03c41e438348bf67150fb250d9

  • SSDEEP

    12288:Ii2KfcG4m4VmU/G3imOZDFvciXne3rIAoo9:kKJ4DVmknZZci6Loo

Score
10/10
imminentspywaretrojan

Malware Config

Targets

    • Target

      10b81639c0629fff525883875b7cc4e1a01afec8c9138f06abe7e4e5627d00c5

    • Size

      419KB

    • MD5

      34c755570f35d8443baf585848a7d6b0

    • SHA1

      a80fb72c042954976a6fbad53d62fd9578464f01

    • SHA256

      10b81639c0629fff525883875b7cc4e1a01afec8c9138f06abe7e4e5627d00c5

    • SHA512

      ea52b23d4e6e88255137a066ce642bdd74a6521a1d92395e5d70169f79c97838314d37d07c6d4082f3bf246c5da159bdcc783d03c41e438348bf67150fb250d9

    • SSDEEP

      12288:Ii2KfcG4m4VmU/G3imOZDFvciXne3rIAoo9:kKJ4DVmknZZci6Loo

    Score
    10/10
    imminentspywaretrojan

    • Imminent RAT

      Remote-access trojan based on Imminent Monitor remote admin software.

      trojanspywareimminent

    • Deletes itself

    • Drops startup file

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks