imminent | f809ab7cf60ad1e50d4a2a0a9e0a6270c1e20188b2d899194caf2c5a06e85b86 | Triage

Sharing

General

Target

f809ab7cf60ad1e50d4a2a0a9e0a6270c1e20188b2d899194caf2c5a06e85b86.exe
Size

465KB
Sample

241126-rwcqza1pan
MD5

bef7b9cc93d19e58e1e6b85f037c1880
SHA1

d4dabcb89411255f36e9acc1e28340ce568fcd9a
SHA256

f809ab7cf60ad1e50d4a2a0a9e0a6270c1e20188b2d899194caf2c5a06e85b86
SHA512

7a38da97e14fe1d024513e8b5edc6ab7d0a175d70b18b349433fb390458160410765990fc69050421a89830d73ef969bdd7b0999604d180f412efc9c52dd0f03
SSDEEP

6144:1apTY8rHhrHzJSiN2253yIqunx6q+wHMr9spcz8AT1GvQKAE3k0D3rAQhg7azirV:1apMMBHIWCIqu5+LK6T1BXE3FYYirXBf

Score

10^/10

imminent discovery spyware trojan

Malware Config

Targets

- Target
  
  f809ab7cf60ad1e50d4a2a0a9e0a6270c1e20188b2d899194caf2c5a06e85b86.exe
- Size
  
  465KB
- MD5
  
  bef7b9cc93d19e58e1e6b85f037c1880
- SHA1
  
  d4dabcb89411255f36e9acc1e28340ce568fcd9a
- SHA256
  
  f809ab7cf60ad1e50d4a2a0a9e0a6270c1e20188b2d899194caf2c5a06e85b86
- SHA512
  
  7a38da97e14fe1d024513e8b5edc6ab7d0a175d70b18b349433fb390458160410765990fc69050421a89830d73ef969bdd7b0999604d180f412efc9c52dd0f03
- SSDEEP
  
  6144:1apTY8rHhrHzJSiN2253yIqunx6q+wHMr9spcz8AT1GvQKAE3k0D3rAQhg7azirV:1apMMBHIWCIqu5+LK6T1BXE3FYYirXBf
Score

10^/10

imminent discovery spyware trojan
- Imminent RAT
  Remote-access trojan based on Imminent Monitor remote admin software.
  trojan spyware imminent
- Imminent family
  imminent
- Drops desktop.ini file(s)
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

imminentdiscoveryspywaretrojan

behavioral2

imminentdiscoveryspywaretrojan