General
-
Target
fe4c008464e7f99279ab099192ef803de60c31605b240a7a6497d2bc8809cc8c
-
Size
669KB
-
Sample
221128-xwf2aaaa36
-
MD5
4bf1521ed6112feb176f9b6907f2c96b
-
SHA1
0a66dacbf5cb0e230c52fd0229af9f64002d4f3c
-
SHA256
fe4c008464e7f99279ab099192ef803de60c31605b240a7a6497d2bc8809cc8c
-
SHA512
bbae3e6b0cac75866b2bc34dc19f60dbce03aba48de10df6edce644c2cac1add84579c3d3fc33f2e53009413ba94c790bd6c58f2d9678007a09d8630b5df957c
-
SSDEEP
12288:tRMQmWIW9rQzgyx+ec3Ed4D/enUaRRVLgWTvoCd/Zk:oW6Mk+D3Ed4Qh
Malware Config
Targets
-
-
Target
fe4c008464e7f99279ab099192ef803de60c31605b240a7a6497d2bc8809cc8c
-
Size
669KB
-
MD5
4bf1521ed6112feb176f9b6907f2c96b
-
SHA1
0a66dacbf5cb0e230c52fd0229af9f64002d4f3c
-
SHA256
fe4c008464e7f99279ab099192ef803de60c31605b240a7a6497d2bc8809cc8c
-
SHA512
bbae3e6b0cac75866b2bc34dc19f60dbce03aba48de10df6edce644c2cac1add84579c3d3fc33f2e53009413ba94c790bd6c58f2d9678007a09d8630b5df957c
-
SSDEEP
12288:tRMQmWIW9rQzgyx+ec3Ed4D/enUaRRVLgWTvoCd/Zk:oW6Mk+D3Ed4Qh
Score10/10-
Imminent RAT
Remote-access trojan based on Imminent Monitor remote admin software.
-
Drops startup file
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
Suspicious use of SetThreadContext
-