Overview

overview

10

Static

static

bfd632256a...35.exe

windows7-x64

10

bfd632256a...35.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bfd632256a8506c3c588c12619baf8f6b63f663cf6acad1a606f912d610a7335

  • Size

    374KB

  • Sample

    221125-v4lkmacf48

  • MD5

    1d349bfb15bfeacedb29cb6aec238523

  • SHA1

    41e87212a301d34867af430d25e37d770ff42866

  • SHA256

    bfd632256a8506c3c588c12619baf8f6b63f663cf6acad1a606f912d610a7335

  • SHA512

    7f0808cb82f7dabf40fcfa13836cac86ba452d736e70c686932fd2ca51c59d8eaf67ec85833dc399221a7d8e29c0718c7c7bfbee4317b70158a53e4e22367d38

  • SSDEEP

    6144:kpap8BEPlo4WAJ68KifybrsOYT2oL1WPvqYsXFw:zmBENLWi68KiqbrPoLYOFw

Score
10/10
imminentspywaretrojan

Malware Config

Targets

    • Target

      bfd632256a8506c3c588c12619baf8f6b63f663cf6acad1a606f912d610a7335

    • Size

      374KB

    • MD5

      1d349bfb15bfeacedb29cb6aec238523

    • SHA1

      41e87212a301d34867af430d25e37d770ff42866

    • SHA256

      bfd632256a8506c3c588c12619baf8f6b63f663cf6acad1a606f912d610a7335

    • SHA512

      7f0808cb82f7dabf40fcfa13836cac86ba452d736e70c686932fd2ca51c59d8eaf67ec85833dc399221a7d8e29c0718c7c7bfbee4317b70158a53e4e22367d38

    • SSDEEP

      6144:kpap8BEPlo4WAJ68KifybrsOYT2oL1WPvqYsXFw:zmBENLWi68KiqbrPoLYOFw

    Score
    10/10
    imminentspywaretrojan

    • Imminent RAT

      Remote-access trojan based on Imminent Monitor remote admin software.

      trojanspywareimminent

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks