Overview

overview

10

Static

static

0f90eda845...b0.exe

windows7-x64

10

0f90eda845...b0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0f90eda8458508b2a054636e8dfb97a852f527e0020f5f83ffc974441c8261b0

  • Size

    423KB

  • Sample

    221126-ye62tadc2t

  • MD5

    f075a14d46a1faf9e7a520e083e62281

  • SHA1

    f287846c5da6771d8f81e540e2c3265130ec4437

  • SHA256

    0f90eda8458508b2a054636e8dfb97a852f527e0020f5f83ffc974441c8261b0

  • SHA512

    69238a7628d97c6e131ff298cc91c14b0e1159786c7ff857008c1f9b6818fd9a0098a26f5e77cfd1bd165f3358b9e6f1e47b1f6c44332650515fcc45b459f012

  • SSDEEP

    6144:Ge5gv7228zcEhuY8doKSCNoAxylD3OmVRn9YGjIHf9Bhip4ibT3VxPzWFxn9y:Gfv+epDbyk0nLi1fxIBxixn

Score
10/10
imminentpersistencespywaretrojan

Malware Config

Targets

    • Target

      0f90eda8458508b2a054636e8dfb97a852f527e0020f5f83ffc974441c8261b0

    • Size

      423KB

    • MD5

      f075a14d46a1faf9e7a520e083e62281

    • SHA1

      f287846c5da6771d8f81e540e2c3265130ec4437

    • SHA256

      0f90eda8458508b2a054636e8dfb97a852f527e0020f5f83ffc974441c8261b0

    • SHA512

      69238a7628d97c6e131ff298cc91c14b0e1159786c7ff857008c1f9b6818fd9a0098a26f5e77cfd1bd165f3358b9e6f1e47b1f6c44332650515fcc45b459f012

    • SSDEEP

      6144:Ge5gv7228zcEhuY8doKSCNoAxylD3OmVRn9YGjIHf9Bhip4ibT3VxPzWFxn9y:Gfv+epDbyk0nLi1fxIBxixn

    Score
    10/10
    imminentpersistencespywaretrojan

    • Imminent RAT

      Remote-access trojan based on Imminent Monitor remote admin software.

      trojanspywareimminent

    • Adds Run key to start application

      persistence

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks