eternity | 02cc96d77c375a798a8e70247ffb52f854b05523bd3d8d2ba6d165e406f76c08 | Triage

Submit
Reports

Overview

overview

Static

static

02cc96d77c...08.exe

windows7_x64

02cc96d77c...08.exe

windows10-2004_x64

Sharing

General

Target

02cc96d77c375a798a8e70247ffb52f854b05523bd3d8d2ba6d165e406f76c08.bin
Size

811KB
Sample

220517-ncbg1sdfep
MD5

7a595e537041af7a24c5e83e773bb3eb
SHA1

2c2a9f52303694aa8682774ce36ed09a9bae2f92
SHA256

02cc96d77c375a798a8e70247ffb52f854b05523bd3d8d2ba6d165e406f76c08
SHA512

70b488fcb7a4517e1b184c1ebd910a4ab113499506d4844252290a82db8ae89e982ef0a5c7200648bf28a8c3e88208823e463d790e14768c383cd77451ec780d

Score

10^/10

eternity stealer suricata

Static task

static1

Behavioral task

behavioral1

Sample

02cc96d77c375a798a8e70247ffb52f854b05523bd3d8d2ba6d165e406f76c08.exe

Resource

win7-20220414-en

eternity stealer suricata

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

02cc96d77c375a798a8e70247ffb52f854b05523bd3d8d2ba6d165e406f76c08.exe

Resource

win10v2004-20220414-en

eternity stealer suricata

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  02cc96d77c375a798a8e70247ffb52f854b05523bd3d8d2ba6d165e406f76c08.bin
- Size
  
  811KB
- MD5
  
  7a595e537041af7a24c5e83e773bb3eb
- SHA1
  
  2c2a9f52303694aa8682774ce36ed09a9bae2f92
- SHA256
  
  02cc96d77c375a798a8e70247ffb52f854b05523bd3d8d2ba6d165e406f76c08
- SHA512
  
  70b488fcb7a4517e1b184c1ebd910a4ab113499506d4844252290a82db8ae89e982ef0a5c7200648bf28a8c3e88208823e463d790e14768c383cd77451ec780d
Score

10^/10

eternity stealer suricata
- Detects Eternity stealer
  stealer
- Eternity
  Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.
  eternity
- suricata: ET MALWARE Observed Win32/Eternity Stealer Domain (eternitypr .net in TLS SNI)
  suricata: ET MALWARE Observed Win32/Eternity Stealer Domain (eternitypr .net in TLS SNI)
  suricata
- suricata: ET MALWARE Observed Win32/Eternity Stealer Domain (eterprx .net in TLS SNI)
  suricata: ET MALWARE Observed Win32/Eternity Stealer Domain (eterprx .net in TLS SNI)
  suricata
- suricata: ET MALWARE Win32/Eternity Stealer Activity (POST)
  suricata: ET MALWARE Win32/Eternity Stealer Activity (POST)
  suricata
- suricata: ET MALWARE Win32/Eternity Stealer CnC Domain in DNS Lookup (eternitypr .net)
  suricata: ET MALWARE Win32/Eternity Stealer CnC Domain in DNS Lookup (eternitypr .net)
  suricata
- suricata: ET MALWARE Win32/Eternity Stealer CnC Domain in DNS Lookup (eterprx .net)
  suricata: ET MALWARE Win32/Eternity Stealer CnC Domain in DNS Lookup (eterprx .net)
  suricata
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

eternitystealersuricata

behavioral2

eternitystealersuricata

© 2018-2024

Terms | Privacy