imminent | 3c19ccf4d2e72da925abb0d169f781957c015cb06ef0792fb9809aef77ecbf0c | Triage

Sharing

General

Target

3c19ccf4d2e72da925abb0d169f781957c015cb06ef0792fb9809aef77ecbf0c
Size

544KB
Sample

221127-trf9psef4w
MD5

c2e6ce4bccc77a0aeec031c9312c979b
SHA1

05f7ea7e00cdd6a6299d6bf72ff7ad653fb7cedd
SHA256

3c19ccf4d2e72da925abb0d169f781957c015cb06ef0792fb9809aef77ecbf0c
SHA512

9deabb7943284282f3e387bb2ff2be2da663454acf6a0d0568498cb2d0c0621d75a0df8e3f20d13eedb02d7368462d163e80e66face3477bc8263dbd13fb0653
SSDEEP

12288:SRioUCOZd14XK/fYMpg/Slxi0bYa3ZF1jfYiqeWGsh5:SRNULZXb/ppg/cbb1se305

Score

10^/10

imminent persistence spyware trojan

Malware Config

Targets

- Target
  
  3c19ccf4d2e72da925abb0d169f781957c015cb06ef0792fb9809aef77ecbf0c
- Size
  
  544KB
- MD5
  
  c2e6ce4bccc77a0aeec031c9312c979b
- SHA1
  
  05f7ea7e00cdd6a6299d6bf72ff7ad653fb7cedd
- SHA256
  
  3c19ccf4d2e72da925abb0d169f781957c015cb06ef0792fb9809aef77ecbf0c
- SHA512
  
  9deabb7943284282f3e387bb2ff2be2da663454acf6a0d0568498cb2d0c0621d75a0df8e3f20d13eedb02d7368462d163e80e66face3477bc8263dbd13fb0653
- SSDEEP
  
  12288:SRioUCOZd14XK/fYMpg/Slxi0bYa3ZF1jfYiqeWGsh5:SRNULZXb/ppg/cbb1se305
Score

10^/10

imminent persistence spyware trojan
- Imminent RAT
  Remote-access trojan based on Imminent Monitor remote admin software.
  trojan spyware imminent
- Modifies WinLogon for persistence
  persistence
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

imminentpersistencespywaretrojan

behavioral2

imminentpersistencespywaretrojan