General
-
Target
b4865c2d9f23b7df972ab8a65e5e94b6.exe
-
Size
117KB
-
Sample
221226-kybs5acf77
-
MD5
b4865c2d9f23b7df972ab8a65e5e94b6
-
SHA1
bc3ecb00be5d812b72062be75ce7840bf1a5d9b3
-
SHA256
ec5abef5fd32ab0f84ed7003eb6cc47b54ada0d1e8a06fd317cedfc06f5c1205
-
SHA512
405cca6f4a69d2fb1f232f2e0762006d5f7fa9be8e01536562f2faf6b1725e280437a9b1d3294e689f3b9f718cb61a324b370581f2c45b560b833822a5c2c515
-
SSDEEP
3072:oK1Xv0NEWNQG0a57pD8ytRb4ZVRxKUdmZji:oY8nQGFDgcRbYRxKUdmZ
Malware Config
Targets
-
-
Target
b4865c2d9f23b7df972ab8a65e5e94b6.exe
-
Size
117KB
-
MD5
b4865c2d9f23b7df972ab8a65e5e94b6
-
SHA1
bc3ecb00be5d812b72062be75ce7840bf1a5d9b3
-
SHA256
ec5abef5fd32ab0f84ed7003eb6cc47b54ada0d1e8a06fd317cedfc06f5c1205
-
SHA512
405cca6f4a69d2fb1f232f2e0762006d5f7fa9be8e01536562f2faf6b1725e280437a9b1d3294e689f3b9f718cb61a324b370581f2c45b560b833822a5c2c515
-
SSDEEP
3072:oK1Xv0NEWNQG0a57pD8ytRb4ZVRxKUdmZji:oY8nQGFDgcRbYRxKUdmZ
Score10/10-
Eternity
Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.
-
Deletes shadow copies
Ransomware often targets backup files to inhibit system recovery.
-
Disables Task Manager via registry modification
-
Executes dropped EXE
-
Modifies extensions of user files
Ransomware generally changes the extension on encrypted files.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Drops desktop.ini file(s)
-