General

  • Target

    86fbbdf4f7be52c446ed1c788496dbc8ad7ae31a4d475b0811593cc9d055916b

  • Size

    2.2MB

  • Sample

    221207-fxpalsge89

  • MD5

    fdbb81daff4e47391ddd226d957b3240

  • SHA1

    0ae2438932ed3d4cfeb98a5a5f9240ac2d9f4809

  • SHA256

    86fbbdf4f7be52c446ed1c788496dbc8ad7ae31a4d475b0811593cc9d055916b

  • SHA512

    3f8320a44681ba06885e399fad12f8f121496998df0e6145eeedae31d95d18594f51b1ce5c7d9250814580989ec2102c5dbf64172d2d482e4580c1cc9df80e26

  • SSDEEP

    49152:UrpXnULRy/7pedrR7dfm3prPL5W6vjQZUWrjnVqFkje:UrpXGs7Wv3wjuUWrjVq+

Score
10/10

Malware Config

Extracted

Family

eternity

C2

http://eternityms33k74r7iuuxfda4sqsiei3o3lbtr5cpalf6f4skszpruad.onion

Attributes
  • payload_urls

    http://167.88.170.23/w993.exe

    http://167.88.170.23/s101.exe,http://167.88.170.23/101.exe,http://167.88.170.23/R101.exe

Targets

    • Target

      86fbbdf4f7be52c446ed1c788496dbc8ad7ae31a4d475b0811593cc9d055916b

    • Size

      2.2MB

    • MD5

      fdbb81daff4e47391ddd226d957b3240

    • SHA1

      0ae2438932ed3d4cfeb98a5a5f9240ac2d9f4809

    • SHA256

      86fbbdf4f7be52c446ed1c788496dbc8ad7ae31a4d475b0811593cc9d055916b

    • SHA512

      3f8320a44681ba06885e399fad12f8f121496998df0e6145eeedae31d95d18594f51b1ce5c7d9250814580989ec2102c5dbf64172d2d482e4580c1cc9df80e26

    • SSDEEP

      49152:UrpXnULRy/7pedrR7dfm3prPL5W6vjQZUWrjnVqFkje:UrpXGs7Wv3wjuUWrjVq+

    Score
    10/10
    • Eternity

      Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix ATT&CK v6

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Discovery

System Information Discovery

1
T1082

Remote System Discovery

1
T1018

Tasks