eternity | abfa66d96469587fb6548e28b4910b5e75ef2bce9c379fa911a81c554591046d | Triage

Sharing

General

Target

0x00070000000231f4-215.dat
Size

338KB
Sample

230821-q1hbkseg8v
MD5

92688c692485c7cdf6210332f6670b1f
SHA1

7aa191d377b5a36db7336fdbdd8c150648243f1c
SHA256

abfa66d96469587fb6548e28b4910b5e75ef2bce9c379fa911a81c554591046d
SHA512

4efce7b7fd17a63863605c2271dd6796c6f44f0498f1a4641b1c1a714e8f6d0461e6f070f9a85349147982aaca46d944f4ecfb48dad02d0050080958eb356d12
SSDEEP

6144:fzGYxLlUkfuauSOq3AIxPuXICL7Ke/0Md0ToRdlbavvomblRBE:fCYxLpxPuXICzqohavvo8E

Score

10^/10

eternity spyware stealer

Malware Config

Extracted

Family

eternity

C2

http://eternityms33k74r7iuuxfda4sqsiei3o3lbtr5cpalf6f4skszpruad.onion

Targets

- Target
  
  0x00070000000231f4-215.dat
- Size
  
  338KB
- MD5
  
  92688c692485c7cdf6210332f6670b1f
- SHA1
  
  7aa191d377b5a36db7336fdbdd8c150648243f1c
- SHA256
  
  abfa66d96469587fb6548e28b4910b5e75ef2bce9c379fa911a81c554591046d
- SHA512
  
  4efce7b7fd17a63863605c2271dd6796c6f44f0498f1a4641b1c1a714e8f6d0461e6f070f9a85349147982aaca46d944f4ecfb48dad02d0050080958eb356d12
- SSDEEP
  
  6144:fzGYxLlUkfuauSOq3AIxPuXICL7Ke/0Md0ToRdlbavvomblRBE:fCYxLpxPuXICzqohavvo8E
Score

10^/10

eternity spyware stealer
- Eternity
  Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.
  eternity
- Deletes itself
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Legitimate hosting services abused for malware hosting/C2
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

eternityspywarestealer

behavioral2

eternityspywarestealer