General
-
Target
29d66a003f3f80f24cb1c84cda66204f359f0bf6cbf6f8eba1badfda4f8b5b1b
-
Size
1.1MB
-
Sample
230211-bwhn8ahh9y
-
MD5
45e1b744323e707af2cf64b54a77fa89
-
SHA1
2a960f622ce05a0a8deab49d4fc068c1b3b9a663
-
SHA256
29d66a003f3f80f24cb1c84cda66204f359f0bf6cbf6f8eba1badfda4f8b5b1b
-
SHA512
a0fa0f097cf8678b70aac8357e1c0dd07a702e2306e8fcac5b73eb42b74025b9af97d1824505805551a7e8adaeab24a5fbb66d3e8b83b7e47facdb1c9fe534b9
-
SSDEEP
24576:ME9GCM9FNBx3s9L90j7TlX+06Cn5qVWQK:ME0CMTvx3sh6Re
Malware Config
Targets
-
-
Target
29d66a003f3f80f24cb1c84cda66204f359f0bf6cbf6f8eba1badfda4f8b5b1b
-
Size
1.1MB
-
MD5
45e1b744323e707af2cf64b54a77fa89
-
SHA1
2a960f622ce05a0a8deab49d4fc068c1b3b9a663
-
SHA256
29d66a003f3f80f24cb1c84cda66204f359f0bf6cbf6f8eba1badfda4f8b5b1b
-
SHA512
a0fa0f097cf8678b70aac8357e1c0dd07a702e2306e8fcac5b73eb42b74025b9af97d1824505805551a7e8adaeab24a5fbb66d3e8b83b7e47facdb1c9fe534b9
-
SSDEEP
24576:ME9GCM9FNBx3s9L90j7TlX+06Cn5qVWQK:ME0CMTvx3sh6Re
Score10/10-
Imminent RAT
Remote-access trojan based on Imminent Monitor remote admin software.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Suspicious use of SetThreadContext
-