imminent | f40549cf5285143bdbf68b6e7cca3a417645f3b61489138847a984718bcd0915 | Triage

Sharing

General

Target

f40549cf5285143bdbf68b6e7cca3a417645f3b61489138847a984718bcd0915
Size

402KB
Sample

221121-3a76jaef61
MD5

7dc66e53b9cdcbed368916136d4bdc0b
SHA1

11d670640b47f6abd17e489737fd590851d298a6
SHA256

f40549cf5285143bdbf68b6e7cca3a417645f3b61489138847a984718bcd0915
SHA512

a44326a51b5c2ab089f1b228347dc6e01eb26ff4102a5ae77d1e6296f7be53a59d4e596131416b5f1bf8d4819e445513b35b196bc8003853b4e470c30258bd9f
SSDEEP

6144:DXGW1GUaveGRZyyCOWFBuDrCxIU2Kn7/LYXIsA0xjs/xUwZrzn:DEULGbyPOKuCfnTLYXu0xsyw

Score

10^/10

imminent persistence spyware trojan

Malware Config

Targets

- Target
  
  f40549cf5285143bdbf68b6e7cca3a417645f3b61489138847a984718bcd0915
- Size
  
  402KB
- MD5
  
  7dc66e53b9cdcbed368916136d4bdc0b
- SHA1
  
  11d670640b47f6abd17e489737fd590851d298a6
- SHA256
  
  f40549cf5285143bdbf68b6e7cca3a417645f3b61489138847a984718bcd0915
- SHA512
  
  a44326a51b5c2ab089f1b228347dc6e01eb26ff4102a5ae77d1e6296f7be53a59d4e596131416b5f1bf8d4819e445513b35b196bc8003853b4e470c30258bd9f
- SSDEEP
  
  6144:DXGW1GUaveGRZyyCOWFBuDrCxIU2Kn7/LYXIsA0xjs/xUwZrzn:DEULGbyPOKuCfnTLYXu0xsyw
Score

10^/10

imminent persistence spyware trojan
- Imminent RAT
  Remote-access trojan based on Imminent Monitor remote admin software.
  trojan spyware imminent
- Adds Run key to start application
  persistence
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

imminentpersistencespywaretrojan

behavioral2

imminentpersistencespywaretrojan