eternity | 437f89c6e976e4358f7efcb00021bdb88be704589759bcb3507e72ee04c35495 | Triage

Sharing

General

Target

27cdd8295412807884367cacce385863.bin
Size

2.2MB
Sample

230311-bkz45ahg7s
MD5

819f367ad171e45f0a431ced491edec4
SHA1

816e52e9e80a12accd1efe34ed9e0d14439101c8
SHA256

437f89c6e976e4358f7efcb00021bdb88be704589759bcb3507e72ee04c35495
SHA512

20d2674170470b252966723796e273e8ebfc4c8d1f6371ec22db296177580ac0f579b2628b22f67886de6dea162709264c33f6f0bc92cd3919bc0513d6b2ad14
SSDEEP

49152:i4gp3gjOWGxoRQC5b/cJPgbEciQtGt2KRCaFH1zDGb2NoV7FF+:i4q3gjOWGxmQC5GciQ8KaPDaqoFu

Score

10^/10

eternity

Malware Config

Targets

- Target
  
  0bb5ca376bcee3ffac89779a8c741609d408aeabce082cc0d6a56178072d0ba2.exe
- Size
  
  3.4MB
- MD5
  
  27cdd8295412807884367cacce385863
- SHA1
  
  056403ac0d8f65326df3d985c81f2693a7183c4d
- SHA256
  
  0bb5ca376bcee3ffac89779a8c741609d408aeabce082cc0d6a56178072d0ba2
- SHA512
  
  33643557f4faed26fa094a4d01b191d5ae69302e4674f4e67b8c196c7b819e594ba9df888cf2d81f6b9671a9f53ebb080cca63d7e217cabc7458f340bd30c139
- SSDEEP
  
  49152:Nk+ecsCppv+EtXldahjdHoK2Ss4gHtRBnDfcivTNqG3zpmnRWs5TgPzSAenW1:OAs2B+aXld8mNT7pbTl+/9W
Score

10^/10

eternity
- Eternity
  Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.
  eternity
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2