General
-
Target
tmp
-
Size
334KB
-
Sample
221110-gp5hasfcf3
-
MD5
7b2a9f44ac450c5dfb06a4453fdcfc7a
-
SHA1
d86bb7cc7025a7594f048cda76aad5a4db568967
-
SHA256
56bd48098dfee2bb98269afe1887f34ce24f88df6dac815724576a1376a4892a
-
SHA512
1d86e7e5d9d866f9eacd073adafde345020b334356efdece9a22059100205bc4b3d13ce5d2eb914835e933dabed675a0ec375db183b43c32d1b2b823c8cf3b07
-
SSDEEP
6144:tGWbuIJQHLbl84hfMqyLVGGXJwnD5rYnSSGibUSh5xcub:tGWS1DyzudrYKt
Behavioral task
behavioral1
Sample
tmp.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
tmp.exe
Resource
win10v2004-20220812-en
Malware Config
Extracted
eternity
http://eternityms33k74r7iuuxfda4sqsiei3o3lbtr5cpalf6f4skszpruad.onion
Targets
-
-
Target
tmp
-
Size
334KB
-
MD5
7b2a9f44ac450c5dfb06a4453fdcfc7a
-
SHA1
d86bb7cc7025a7594f048cda76aad5a4db568967
-
SHA256
56bd48098dfee2bb98269afe1887f34ce24f88df6dac815724576a1376a4892a
-
SHA512
1d86e7e5d9d866f9eacd073adafde345020b334356efdece9a22059100205bc4b3d13ce5d2eb914835e933dabed675a0ec375db183b43c32d1b2b823c8cf3b07
-
SSDEEP
6144:tGWbuIJQHLbl84hfMqyLVGGXJwnD5rYnSSGibUSh5xcub:tGWS1DyzudrYKt
Score10/10-
Eternity
Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.
-
Executes dropped EXE
-
Loads dropped DLL
-
Accesses Microsoft Outlook profiles
-
Legitimate hosting services abused for malware hosting/C2
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-