eternity | b9d02972ce30f04a0ee02a71f20ce4d2f052d97e4260ce23028ff4a723205849 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-1703-x64

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

b9d02972ce30f04a0ee02a71f20ce4d2f052d97e4260ce23028ff4a723205849.exe

Resource

win10-20220812-en

eternity collection spyware stealer

windows10-1703-x64

14 signatures

150 seconds

General

Target

b9d02972ce30f04a0ee02a71f20ce4d2f052d97e4260ce23028ff4a723205849
Size

334KB
MD5

4c02e3510824a8cd677acf819f27b3aa
SHA1

a33925156a19dbf0906b02cd54b0f029ff45191c
SHA256

b9d02972ce30f04a0ee02a71f20ce4d2f052d97e4260ce23028ff4a723205849
SHA512

a10d47b1566b9bbffbe9d780a880906c3701fc09e6e64ff82037c7956bf54b6ce11c0658691413c24eda16c22b5ed20b2d26c516c66038cb8f650676085b99d2
SSDEEP

6144:Gqjtbkrtatzd15542tTm3DWEewg7i8J0tpbJoa1E3:GqjFk2wDWWjw0tXfE

Score

10^/10

eternity

Malware Config

Extracted

Family

eternity

C2

http://eternityms33k74r7iuuxfda4sqsiei3o3lbtr5cpalf6f4skszpruad.onion

Signatures

Eternity family
eternity

Files

b9d02972ce30f04a0ee02a71f20ce4d2f052d97e4260ce23028ff4a723205849
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 331KB - Virtual size: 330KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy