Overview

overview

10

Static

static

5

8633c23a5d...21.exe

windows7-x64

10

8633c23a5d...21.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8633c23a5df57f4feab6102aad79fb959b4bb39082bdc95352165d9395d6a821

  • Size

    1.3MB

  • Sample

    221124-dg4dgsgb21

  • MD5

    06e3284b9b8694e27147859a18d12b38

  • SHA1

    c9da46867dab19f023c6a261b03a62247675072e

  • SHA256

    8633c23a5df57f4feab6102aad79fb959b4bb39082bdc95352165d9395d6a821

  • SHA512

    2bb8f4c839e2306df0a53128fcb839e53a971b46eb56cad952dce258fa06281c719f2c3342d9a94ad58a89e4d5e3b7e3097a722134f3796c66c7cfccb258145d

  • SSDEEP

    24576:i4lavt0LkLL9IMixoEgea/fJYOW7uIlGj/6b+Vq9MmCS:Vkwkn9IMHea3JYOUpE8eaPCS

Score
10/10
imminentpersistencespywaretrojan

Malware Config

Targets

    • Target

      8633c23a5df57f4feab6102aad79fb959b4bb39082bdc95352165d9395d6a821

    • Size

      1.3MB

    • MD5

      06e3284b9b8694e27147859a18d12b38

    • SHA1

      c9da46867dab19f023c6a261b03a62247675072e

    • SHA256

      8633c23a5df57f4feab6102aad79fb959b4bb39082bdc95352165d9395d6a821

    • SHA512

      2bb8f4c839e2306df0a53128fcb839e53a971b46eb56cad952dce258fa06281c719f2c3342d9a94ad58a89e4d5e3b7e3097a722134f3796c66c7cfccb258145d

    • SSDEEP

      24576:i4lavt0LkLL9IMixoEgea/fJYOW7uIlGj/6b+Vq9MmCS:Vkwkn9IMHea3JYOUpE8eaPCS

    Score
    10/10
    imminentpersistencespywaretrojan

    • Imminent RAT

      Remote-access trojan based on Imminent Monitor remote admin software.

      trojanspywareimminent

    • Uses the VBS compiler for execution

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks