imminent | 107109aaed640c5229f3cf98480c80b064d9ab761152585f2336bdafeef48608 | Triage

Sharing

General

Target

107109aaed640c5229f3cf98480c80b064d9ab761152585f2336bdafeef48608
Size

353KB
Sample

221127-asvc6sbb3t
MD5

e341042425b0cc9fc74b511fd79cd120
SHA1

ef36bd442292248be5e72809bd216b0f137565f1
SHA256

107109aaed640c5229f3cf98480c80b064d9ab761152585f2336bdafeef48608
SHA512

f2956f3ea045596a774b899a07893d52aaa7f9b8b086df5ea387ef09700dec7e5351ad38184130ee23b40ffeeaa7b5e51d136856c27779206978d44b3b51c299
SSDEEP

6144:L/U8MvkWOc7TivHnZ5NFEuBPrQcbW3wR32AFyAI+ge:L/MvkaI55NFE2r6SR

Score

10^/10

imminent persistence spyware trojan

Malware Config

Targets

- Target
  
  107109aaed640c5229f3cf98480c80b064d9ab761152585f2336bdafeef48608
- Size
  
  353KB
- MD5
  
  e341042425b0cc9fc74b511fd79cd120
- SHA1
  
  ef36bd442292248be5e72809bd216b0f137565f1
- SHA256
  
  107109aaed640c5229f3cf98480c80b064d9ab761152585f2336bdafeef48608
- SHA512
  
  f2956f3ea045596a774b899a07893d52aaa7f9b8b086df5ea387ef09700dec7e5351ad38184130ee23b40ffeeaa7b5e51d136856c27779206978d44b3b51c299
- SSDEEP
  
  6144:L/U8MvkWOc7TivHnZ5NFEuBPrQcbW3wR32AFyAI+ge:L/MvkaI55NFE2r6SR
Score

10^/10

imminent persistence spyware trojan
- Imminent RAT
  Remote-access trojan based on Imminent Monitor remote admin software.
  trojan spyware imminent
- Adds Run key to start application
  persistence
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

imminentpersistencespywaretrojan

behavioral2

imminentpersistencespywaretrojan