eternity | 8e98083cac22dd4060992997a9e87c7a013baf9f70685de288f815a5f99434da | Triage

Sharing

General

Target

0fcabff10f0b3659aecdcb536e685377.bin
Size

1.5MB
Sample

230523-bh58csdc42
MD5

b70b19f693fb9e68a730574f9f7ca4a2
SHA1

6f6d9964871f208ade557407cd15357d0c7f51e3
SHA256

8e98083cac22dd4060992997a9e87c7a013baf9f70685de288f815a5f99434da
SHA512

8815c1b1d84c6090c5c49400c81dab201e53b773cefea4e1ef7fe209e6804bbadb2d2dcabe93916f566b844a52add10664445cf74a90fa2adf65c945b696d941
SSDEEP

49152:BIuYMWybctLk8D671SzABfhGy8sTW5JUM:BjYNztL8RS8BJGDsqx

Score

10^/10

eternity

Malware Config

Extracted

Family

eternity

Attributes

payload_urls
http://167.88.170.23/swo/sw.exe

http://167.88.170.23/swo/swo.exe,http://167.88.170.23/1300.exe

Targets

- Target
  
  4c0f274e3694fbabe53bf4160108b37353cbe110eab6effadfad8dc1f868d49e.exe
- Size
  
  2.4MB
- MD5
  
  0fcabff10f0b3659aecdcb536e685377
- SHA1
  
  fd1f72d74a65ea4f71fbe98acf5a6a84398632b8
- SHA256
  
  4c0f274e3694fbabe53bf4160108b37353cbe110eab6effadfad8dc1f868d49e
- SHA512
  
  eef91dd06cdb75e84b22d0757af20aeae0a700809d0d217cbb2437566acee101397d93a5617ccbea83896f5c4df79b80306a967de467a320b763b6219c82642a
- SSDEEP
  
  24576:FCXYEopBLD+2pIRPAo+V0z68WEZYcsl12gwpU7ng4QLCKnv8hfiF+IoHOWZ2wvxI:SFnPAo+S28BZY3lgg97ngB+KIIoHOWD
Score

10^/10

eternity
- Eternity
  Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.
  eternity
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Remote System Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2