imminent | a21a8c9ceac287162b3768be7053aa24aced1ba2030f00abaea3d3bcb7d69877 | Triage

Sharing

General

Target

a21a8c9ceac287162b3768be7053aa24aced1ba2030f00abaea3d3bcb7d69877
Size

712KB
Sample

221123-qr69cahg2s
MD5

da92c1af88430f4b9044ae9145319d81
SHA1

cc260b206124b06efe0cc7bb8310bf2add29ee20
SHA256

a21a8c9ceac287162b3768be7053aa24aced1ba2030f00abaea3d3bcb7d69877
SHA512

3a8d7795502380c8c01942a9a4cd52b406556e32834a5f11de9bf919e0c7168af6aba1d8cd5120819c6eb0dbcf42940f49d63bfb576b7d4285fa5bc4c323debc
SSDEEP

12288:JkFdzBJMcv2r2xWOXYIehynnLi9RKtmLpM+hBZ01FjMpcCvmoQ:2F5Nv2UW/IAGnLbmOotm

Score

10^/10

imminent persistence spyware trojan

Malware Config

Targets

- Target
  
  a21a8c9ceac287162b3768be7053aa24aced1ba2030f00abaea3d3bcb7d69877
- Size
  
  712KB
- MD5
  
  da92c1af88430f4b9044ae9145319d81
- SHA1
  
  cc260b206124b06efe0cc7bb8310bf2add29ee20
- SHA256
  
  a21a8c9ceac287162b3768be7053aa24aced1ba2030f00abaea3d3bcb7d69877
- SHA512
  
  3a8d7795502380c8c01942a9a4cd52b406556e32834a5f11de9bf919e0c7168af6aba1d8cd5120819c6eb0dbcf42940f49d63bfb576b7d4285fa5bc4c323debc
- SSDEEP
  
  12288:JkFdzBJMcv2r2xWOXYIehynnLi9RKtmLpM+hBZ01FjMpcCvmoQ:2F5Nv2UW/IAGnLbmOotm
Score

10^/10

imminent persistence spyware trojan
- Imminent RAT
  Remote-access trojan based on Imminent Monitor remote admin software.
  trojan spyware imminent
- Adds Run key to start application
  persistence
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

imminentpersistencespywaretrojan

behavioral2

imminentpersistencespywaretrojan