eternity | e2057c960dfd27a0934e680b88f05d3d0a1420b1dd13a0b466cefcc4b1ff1e38 | Triage

Sharing

General

Target

NEAS.6367f27e09bef5c1df57a00325c6f000.exe
Size

1.9MB
Sample

231021-z7ptnsfd95
MD5

6367f27e09bef5c1df57a00325c6f000
SHA1

45ebda2e8be86bae6a704475c85cf3a2d3c23071
SHA256

e2057c960dfd27a0934e680b88f05d3d0a1420b1dd13a0b466cefcc4b1ff1e38
SHA512

a452ebad0af84dd86e840c00d9ba9f09ea7ba24597320d5d6ccc49fd36c21949fc59dd0bff05df23b21e17c82f2b416c4838bfd58119f23bd73ef7ed28ea595c
SSDEEP

49152:75uDZC81N59bD390ZA6DTDCjmLRnEEx94G6TrmpZoVXwG3ca2:tuDZCiN0ZA6zCjmBEA6eZo53q

Score

10^/10

eternity

Malware Config

Extracted

Family

eternity

C2

http://eternityms33k74r7iuuxfda4sqsiei3o3lbtr5cpalf6f4skszpruad.onion

Attributes

payload_urls
http://164.92.158.93/eth.exe

http://164.92.158.93/bcs.exe, http://164.92.158.93/Bnb.exe

Targets

- Target
  
  NEAS.6367f27e09bef5c1df57a00325c6f000.exe
- Size
  
  1.9MB
- MD5
  
  6367f27e09bef5c1df57a00325c6f000
- SHA1
  
  45ebda2e8be86bae6a704475c85cf3a2d3c23071
- SHA256
  
  e2057c960dfd27a0934e680b88f05d3d0a1420b1dd13a0b466cefcc4b1ff1e38
- SHA512
  
  a452ebad0af84dd86e840c00d9ba9f09ea7ba24597320d5d6ccc49fd36c21949fc59dd0bff05df23b21e17c82f2b416c4838bfd58119f23bd73ef7ed28ea595c
- SSDEEP
  
  49152:75uDZC81N59bD390ZA6DTDCjmLRnEEx94G6TrmpZoVXwG3ca2:tuDZCiN0ZA6zCjmBEA6eZo53q
Score

10^/10

eternity
- Eternity
  Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.
  eternity
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2