eternity | 6bb1564eca89071edd9c42b84481aed5f3f5aaccedb8f61d6fb892b7f08bdca7 | Triage

Sharing

General

Target

2f8df206ba700503dbebf59e937af0ec.exe
Size

1.1MB
Sample

221118-hel4mscf7z
MD5

2f8df206ba700503dbebf59e937af0ec
SHA1

7c36d57af94f2dd16a62c09356b4ef2c63e456fd
SHA256

6bb1564eca89071edd9c42b84481aed5f3f5aaccedb8f61d6fb892b7f08bdca7
SHA512

6fbb58b3e3046498c64ad659db07ecd28357c54d65d2f1cf00220ce1bbd4fa4693dbe2c0df607a801f5cf6757bd5327735448c3babecb997ec85e88049275a59
SSDEEP

24576:+JqzI2HEUvWMJsbHsoO0YTyllU3OWuA5aRn:+JrbG70Y4WFZ8Rn

Score

10^/10

eternity

Malware Config

Extracted

Family

eternity

Wallets

4BCCzZcSyS7L1229mxLRArhp2HPKwpBmHGDnZKnWFds856vvQcRiDSsLZWH2CjW6xigC3NSGE5Qq2gfixNyMMVc723mjiPs

Attributes

payload_urls
http://193.218.201.246/xmrig.exe

Targets

- Target
  
  2f8df206ba700503dbebf59e937af0ec.exe
- Size
  
  1.1MB
- MD5
  
  2f8df206ba700503dbebf59e937af0ec
- SHA1
  
  7c36d57af94f2dd16a62c09356b4ef2c63e456fd
- SHA256
  
  6bb1564eca89071edd9c42b84481aed5f3f5aaccedb8f61d6fb892b7f08bdca7
- SHA512
  
  6fbb58b3e3046498c64ad659db07ecd28357c54d65d2f1cf00220ce1bbd4fa4693dbe2c0df607a801f5cf6757bd5327735448c3babecb997ec85e88049275a59
- SSDEEP
  
  24576:+JqzI2HEUvWMJsbHsoO0YTyllU3OWuA5aRn:+JrbG70Y4WFZ8Rn
Score

10^/10

eternity
- Eternity
  Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.
  eternity
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Remote System Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2