Overview

overview

10

Static

static

59e87f0e6f...94.exe

windows7-x64

10

59e87f0e6f...94.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    59e87f0e6f6004c8a072f8792a2fcc322d5b77dea16696d75070c439663fda94

  • Size

    542KB

  • Sample

    221126-b7rq9sda23

  • MD5

    55ff3f626cd45a8c7475813e846b190f

  • SHA1

    1d6bf0c622bef30a0d38b642f17770bbc4ce42c6

  • SHA256

    59e87f0e6f6004c8a072f8792a2fcc322d5b77dea16696d75070c439663fda94

  • SHA512

    68cf5b304a1c12c030f9caf4505fe2141e71aae29e8f44a6a4487fc0b48edf7628876024118cb9bd272be9a4d5f9b2ecfb75c546e12c540ed2855baae9566e2a

  • SSDEEP

    12288:Zcd85NPrFOuLwceE722Q0pOMVjsIYL6wbyVCylTBGY:md2BO/ce/ZL6wby0U

Score
10/10
imminentpersistencespywaretrojan

Malware Config

Targets

    • Target

      59e87f0e6f6004c8a072f8792a2fcc322d5b77dea16696d75070c439663fda94

    • Size

      542KB

    • MD5

      55ff3f626cd45a8c7475813e846b190f

    • SHA1

      1d6bf0c622bef30a0d38b642f17770bbc4ce42c6

    • SHA256

      59e87f0e6f6004c8a072f8792a2fcc322d5b77dea16696d75070c439663fda94

    • SHA512

      68cf5b304a1c12c030f9caf4505fe2141e71aae29e8f44a6a4487fc0b48edf7628876024118cb9bd272be9a4d5f9b2ecfb75c546e12c540ed2855baae9566e2a

    • SSDEEP

      12288:Zcd85NPrFOuLwceE722Q0pOMVjsIYL6wbyVCylTBGY:md2BO/ce/ZL6wby0U

    Score
    10/10
    imminentpersistencespywaretrojan

    • Imminent RAT

      Remote-access trojan based on Imminent Monitor remote admin software.

      trojanspywareimminent

    • Adds Run key to start application

      persistence

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks