Overview

overview

10

Static

static

3

A bit Smar....1.exe

windows7-x64

10

A bit Smar....1.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    A bit Smarter 4.6.1.exe

  • Size

    1.3MB

  • Sample

    241009-ltjtls1alf

  • MD5

    7e8236fd0047d8c807d0439b0b77d1d5

  • SHA1

    6a33b3aeab36d5158c7a3dbf1ae306cea1642025

  • SHA256

    f8d5d2a97dcf6dae00ac56d1d8732065af21623a97e081e6518d1e1e878e1c41

  • SHA512

    04e565721f07201fff2af942279c5fbb523e85d1069ad3188ac4111fa8eaa31b970955882b81bc42364f1978a3032c066cb392a5352628b8f58aaa1e4c62da4e

  • SSDEEP

    24576:SMXAF2jHlk02cIwiW0eKGepqMY8QZaYXhGuWLl/n1DFYkI5:S0IOHlUcti/PGoaXYuAtK

Score
10/10
imminentdiscoveryspywaretrojan

Malware Config

Targets

    • Target

      A bit Smarter 4.6.1.exe

    • Size

      1.3MB

    • MD5

      7e8236fd0047d8c807d0439b0b77d1d5

    • SHA1

      6a33b3aeab36d5158c7a3dbf1ae306cea1642025

    • SHA256

      f8d5d2a97dcf6dae00ac56d1d8732065af21623a97e081e6518d1e1e878e1c41

    • SHA512

      04e565721f07201fff2af942279c5fbb523e85d1069ad3188ac4111fa8eaa31b970955882b81bc42364f1978a3032c066cb392a5352628b8f58aaa1e4c62da4e

    • SSDEEP

      24576:SMXAF2jHlk02cIwiW0eKGepqMY8QZaYXhGuWLl/n1DFYkI5:S0IOHlUcti/PGoaXYuAtK

    Score
    10/10
    imminentdiscoveryspywaretrojan

    • Imminent RAT

      Remote-access trojan based on Imminent Monitor remote admin software.

      trojanspywareimminent

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks