imminent | fd710ac0bdaed06293b8671ee935c88f4a3aca2200482c50abcce5aa9c06c3ff | Triage

Submit
Reports

Overview

overview

Static

static

fd710ac0bd...ff.exe

windows7-x64

fd710ac0bd...ff.exe

windows10-2004-x64

Sharing

General

Target

fd710ac0bdaed06293b8671ee935c88f4a3aca2200482c50abcce5aa9c06c3ff
Size

352KB
Sample

221126-11jjracc7v
MD5

2650bf6d5c4ad8279215e3326d19a278
SHA1

c71fbd1020d7a244ca404bedb98e3074f22b50d2
SHA256

fd710ac0bdaed06293b8671ee935c88f4a3aca2200482c50abcce5aa9c06c3ff
SHA512

8ac8a313bc491f35d7310b860c4f9c1e405b3bec85799684f8d7b39f4fdd51813c148c46ffe8a4cf64d2321977d9d500b2e973c6afc8c05a62e4a25f6c4dd7f5
SSDEEP

6144:8K52HzXI/1jwWw0IrAv/FINo6hHIq/xcLp8t/xTBN/uVBgKj:T52HzYNcD1Aoo6Z3iLpG/B7/uVyKj

Score

10^/10

imminent spyware trojan

Static task

static1

Behavioral task

behavioral1

Sample

fd710ac0bdaed06293b8671ee935c88f4a3aca2200482c50abcce5aa9c06c3ff.exe

Resource

win7-20221111-en

imminent spyware trojan

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

fd710ac0bdaed06293b8671ee935c88f4a3aca2200482c50abcce5aa9c06c3ff.exe

Resource

win10v2004-20220901-en

imminent spyware trojan

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  fd710ac0bdaed06293b8671ee935c88f4a3aca2200482c50abcce5aa9c06c3ff
- Size
  
  352KB
- MD5
  
  2650bf6d5c4ad8279215e3326d19a278
- SHA1
  
  c71fbd1020d7a244ca404bedb98e3074f22b50d2
- SHA256
  
  fd710ac0bdaed06293b8671ee935c88f4a3aca2200482c50abcce5aa9c06c3ff
- SHA512
  
  8ac8a313bc491f35d7310b860c4f9c1e405b3bec85799684f8d7b39f4fdd51813c148c46ffe8a4cf64d2321977d9d500b2e973c6afc8c05a62e4a25f6c4dd7f5
- SSDEEP
  
  6144:8K52HzXI/1jwWw0IrAv/FINo6hHIq/xcLp8t/xTBN/uVBgKj:T52HzYNcD1Aoo6Z3iLpG/B7/uVyKj
Score

10^/10

imminent spyware trojan
- Imminent RAT
  Remote-access trojan based on Imminent Monitor remote admin software.
  trojan spyware imminent
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
- Drops desktop.ini file(s)
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

imminentspywaretrojan

behavioral2

imminentspywaretrojan

© 2018-2025

Terms | Privacy