eternity | Stealer[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

Stealer.exe

windows7-x64

Stealer.exe

windows10-2004-x64

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Stealer.exe

Resource

win7-20220812-en

eternity collection spyware stealer

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

Stealer.exe

Resource

win10v2004-20220901-en

eternity collection spyware stealer

windows10-2004-x64

11 signatures

150 seconds

General

Target

Stealer.exe
Size

334KB
MD5

a1b1198e4e7a92dc4e824fc8abdd14c9
SHA1

e03727a30b4e5e043bf0dfb8ddf084d68011a1cc
SHA256

1b91ef72cec2de0aed0ae5d633abb555adb9951e4fa804f1cdce4ebe6262e3c9
SHA512

f6559dfa3565ed93df7ac32193843c75af72416fbcee7a3adceac57d0afc5840efde7524e38bb060fc72d2ec1b74aefe455f2a39cffecf65277cae25be27fb27
SSDEEP

6144:ScTjiHG92/tSAkCTOmhwJJmTCyMKXMlvWjgPAbX2Yi:ScHPYVK8myal5

Score

10^/10

eternity

Malware Config

Extracted

Family

eternity

C2

http://rlcjba7wduej3xcstcjo577eqgjsjvcjfsw4i23fqvf2y27ylylhmhad.onion

Signatures

Eternity family
eternity

Files

Stealer.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 331KB - Virtual size: 330KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy