Imecab

Description

(Symantec) The purpose of Trojan.Imecab is to set up a persistent remote access account on the target machine with a hardcoded password. Variants of the malware were also observed with the filename guester.exe which likely refers to the functionality of adding a powerful guest account to the system.

The malware installs itself in the system as a Windows service to achieve persistence and ensure that the guest account remains available to the attacker.

Names

Name
Imecab

Type

Backdoor

Information

https://symantec-blogs.broadcom.com/blogs/threat-intelligence/leafminer-espionage-middle-east

Malpedia

https://malpedia.caad.fkie.fraunhofer.de/details/win.imecab

Other Information

Uuid

0a4a941f-bbc7-4849-b7ec-fe113221a695

Last Card Change

2020-04-23

Threat Intelligence Garden

Explorer

Imecab

Imecab

Description

Names

Category

Type

Information

Malpedia

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks