General
-
Target
a799375cefbd67e2d28f9434cd6788363392e601f71a72b05b81f9dde3e7a23f
-
Size
272KB
-
Sample
221127-fsk3dsbe95
-
MD5
c312d534e92c8ce721e31ad4c0c9905c
-
SHA1
598353c84df0e45b5f139e08c107826d93503f78
-
SHA256
a799375cefbd67e2d28f9434cd6788363392e601f71a72b05b81f9dde3e7a23f
-
SHA512
00a39e8c25d86e07258ebba6275b3c8f5d514c82557ddefc9e2a841360b97c64b3846659b89c5f942d831ee11b2d4c573cbe037cb6d27306196e62ba8749866a
-
SSDEEP
6144:ugBorQFU/QChJemNBhW5cszDdgYJM17TU8RligbTctlt:3BLoQChJemjMcszDfJMi8RgMTIt
Malware Config
Targets
-
-
Target
a799375cefbd67e2d28f9434cd6788363392e601f71a72b05b81f9dde3e7a23f
-
Size
272KB
-
MD5
c312d534e92c8ce721e31ad4c0c9905c
-
SHA1
598353c84df0e45b5f139e08c107826d93503f78
-
SHA256
a799375cefbd67e2d28f9434cd6788363392e601f71a72b05b81f9dde3e7a23f
-
SHA512
00a39e8c25d86e07258ebba6275b3c8f5d514c82557ddefc9e2a841360b97c64b3846659b89c5f942d831ee11b2d4c573cbe037cb6d27306196e62ba8749866a
-
SSDEEP
6144:ugBorQFU/QChJemNBhW5cszDdgYJM17TU8RligbTctlt:3BLoQChJemjMcszDfJMi8RgMTIt
Score10/10-
Imminent RAT
Remote-access trojan based on Imminent Monitor remote admin software.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-