General
-
Target
d2a5fb8eb9ad3db722be4d6a4bfe3acff288dc1cde64644a7b9900d2563b14d8
-
Size
1.4MB
-
Sample
221215-j2v6haeh8w
-
MD5
37da979d87ef402b50cb00266bc00808
-
SHA1
ae0134c76c9871bfede27d5f9d7c628f660bacd2
-
SHA256
d2a5fb8eb9ad3db722be4d6a4bfe3acff288dc1cde64644a7b9900d2563b14d8
-
SHA512
be284a1e91eba43adf9ee208fdcceba8f67e33d40bd0fd43bc46129520bdb6986c2075875bafacf6706ea10f824245edf9dff93c20ecea91ffb9c3c971eb1225
-
SSDEEP
24576:gTZL7vcwpCFbT1J11cBfIVnXg78FiClztx7vxNRWjKD8+e8+7C3URV6Wc:2L7xpQbTgBAmWJlLbbRWjKje8FyVm
Malware Config
Targets
-
-
Target
d2a5fb8eb9ad3db722be4d6a4bfe3acff288dc1cde64644a7b9900d2563b14d8
-
Size
1.4MB
-
MD5
37da979d87ef402b50cb00266bc00808
-
SHA1
ae0134c76c9871bfede27d5f9d7c628f660bacd2
-
SHA256
d2a5fb8eb9ad3db722be4d6a4bfe3acff288dc1cde64644a7b9900d2563b14d8
-
SHA512
be284a1e91eba43adf9ee208fdcceba8f67e33d40bd0fd43bc46129520bdb6986c2075875bafacf6706ea10f824245edf9dff93c20ecea91ffb9c3c971eb1225
-
SSDEEP
24576:gTZL7vcwpCFbT1J11cBfIVnXg78FiClztx7vxNRWjKD8+e8+7C3URV6Wc:2L7xpQbTgBAmWJlLbbRWjKje8FyVm
Score10/10-
Eternity
Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.
-
Downloads MZ/PE file
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-