Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

a5b420888c...aN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a5b420888c9cdb05ae191a1996bd7d38618c7b5b0f6d9085c7812afca3b5b1daN.exe

  • Size

    1.3MB

  • Sample

    250323-a6s29svtgw

  • MD5

    842192abeee1ca4788c7f9562ba77c40

  • SHA1

    0097f42320ccec5a937a9e43dcd37adf154b4f78

  • SHA256

    a5b420888c9cdb05ae191a1996bd7d38618c7b5b0f6d9085c7812afca3b5b1da

  • SHA512

    b9ee5e78431ff98c06318fcfbb603041f572672810f136c4e393a1aa1d027ff61923ae565af9ec3b5a4caee1c5a9d3e5bb005934550052a5df415073550f2d34

  • SSDEEP

    24576:nFFWO5WqPbFPhGSSc5sus9Ux0HalJ2a9jRlbRgAeO7A:nvZMqPJhGSSc5q9USCZRU

Score
10/10
imminentdiscoverypersistencespywaretrojan

Malware Config

Targets

    • Target

      a5b420888c9cdb05ae191a1996bd7d38618c7b5b0f6d9085c7812afca3b5b1daN.exe

    • Size

      1.3MB

    • MD5

      842192abeee1ca4788c7f9562ba77c40

    • SHA1

      0097f42320ccec5a937a9e43dcd37adf154b4f78

    • SHA256

      a5b420888c9cdb05ae191a1996bd7d38618c7b5b0f6d9085c7812afca3b5b1da

    • SHA512

      b9ee5e78431ff98c06318fcfbb603041f572672810f136c4e393a1aa1d027ff61923ae565af9ec3b5a4caee1c5a9d3e5bb005934550052a5df415073550f2d34

    • SSDEEP

      24576:nFFWO5WqPbFPhGSSc5sus9Ux0HalJ2a9jRlbRgAeO7A:nvZMqPJhGSSc5q9USCZRU

    Score
    10/10
    imminentdiscoverypersistencespywaretrojan

    • Imminent RAT

      Remote-access trojan based on Imminent Monitor remote admin software.

      trojanspywareimminent

    • Imminent family

      imminent

    • Drops startup file

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks