Overview

overview

10

Static

static

1

Eternity.html

windows10-1703-x64

10

Analysis

  • max time kernel
    61s
  • max time network
    59s
  • platform
    windows10-1703_x64
  • resource
    win10-20231215-en
  • resource tags

    arch:x64arch:x86image:win10-20231215-enlocale:en-usos:windows10-1703-x64system
  • submitted
    25-01-2024 02:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Eternity.html

  • Size

    11KB

  • MD5

    3bfbf8caca6da2c0e496fec4f3eadc16

  • SHA1

    a7645a8a41add281aad1e098228c0cf00564c966

  • SHA256

    ff90858efcd74e63b1ea345095a9c58005374c1bf0cb855a0a46804644f45e7a

  • SHA512

    5cf64b7224600b7740978796f0f7bb4778c410368a8c1e2390f9c793590759aefe1541dc9c78783fc87af0ddfe9481b0f3a66aee745f0338abb9d3c41b2ca365

  • SSDEEP

    192:PNdOKhTdJkAr423dJszET8QOMkynJLKAayfJN:OKhTdJkA0aJfT8kJn5JN

Score
10/10
eternity

Malware Config

Signatures

  • Eternity

    Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.

    eternity
  • Modifies Internet Explorer settings 1 TTPs 64 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 8 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\Eternity.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:3524
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3524 CREDAT:82945 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:4700
  • C:\Windows\System32\rundll32.exe
    C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
    1⤵
      PID:1936

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
      Filesize

      471B

      MD5

      6c9b222cd1e44e41ad93ba8d2fcb6512

      SHA1

      b00df12a3bb2efd842f545c288b4bc948fc0de8f

      SHA256

      4d9577e0b9cdb6fd342f66ed39177a482fa460da255f954dcd6a32b88385727d

      SHA512

      809faeef601ca22eba46491747fc7dbb4ce292aaff753ec0041cd85121fbf914f78a23bed0882ce89712a0ebdc52d3aaedad71e9e98e194c62289577c82f5507

      Download Submit

    • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_AA1E8580D4EBC816148CE81268683776
      Filesize

      404B

      MD5

      8c6fd02313ab795effdf7eecc2a6961f

      SHA1

      fe6e290a18340bba71dc8c5af48bef63543c195b

      SHA256

      d7d06a29ce299213d2a1c0e0edca2d901df6c897bb04ef3116344841f8402eb1

      SHA512

      1d3c2613670fad4b09e830344acc5ce0ef2b8b0d3b69f8220fe39f672319863436ca648c290e427eff6df54049a0bd0ab100108a7a9631efadacc7d2f147a372

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Internet Explorer\VersionManager\ver26EC.tmp
      Filesize

      15KB

      MD5

      1a545d0052b581fbb2ab4c52133846bc

      SHA1

      62f3266a9b9925cd6d98658b92adec673cbe3dd3

      SHA256

      557472aeaebf4c1c800b9df14c190f66d62cbabb011300dbedde2dcddd27a6c1

      SHA512

      bd326d111589d87cd6d019378ec725ac9ac7ad4c36f22453941f7d52f90b747ede4783a83dfff6cae1b3bb46690ad49cffa77f2afda019b22863ac485b406e8d

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\1WNDVRQC\qsmlCZW0AR4W.xml
      Filesize

      218B

      MD5

      7b6105051888251d52eaa0a4104bc84d

      SHA1

      1e5be92db2ac7bc9252d610f528e56f4e7daf124

      SHA256

      4badd1fb522e9b368a2102d11c5d12325fa28e5a38e4562d64fd7b49da9d24f7

      SHA512

      911192feec0bce85026d2f78de24f748dbe45ae55d4a7267d28d35981465ae0ce9e178e210fa5d6154cd002d6753da879172b9f6ed4db39ddb29f4f997e47121

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\1WNDVRQC\qsmlLC6E12JP.xml
      Filesize

      221B

      MD5

      b1237b96758903f4240eb90d7db57818

      SHA1

      da83412df76f0807658d06b02d9f360f1119bae1

      SHA256

      e4250a723ed6e5a60c19e444ee04d85a770bb8f11b3ef5492f8e7166edfac54b

      SHA512

      684353c48f0cf833eaf70fc4a2f59fba0c20e37a07b7f0538d156f40cede747e23866309fa400293d1aaa52d230207f2a742b91a52ef57e711bfd84c5ad298fb

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\1WNDVRQC\qsmlV8ZD8VL5.xml
      Filesize

      219B

      MD5

      c7cafa57a51b6ca9d68ac4df3d79ad62

      SHA1

      50d2301529d04045def582479626f0a630f317aa

      SHA256

      1bae9d3a6de5507292c6f920e1cb7c05a145663e06c7a4082efcba094188be56

      SHA512

      c7fe8fd612cedc85aeefe2fc0b74100753e8f4f99247af3074d8027d588bc780b43fe7011eba3200f1238b52c2b5ac22a87bf5320de974a5d725ed9ef083fde0

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\1WNDVRQC\qsmlWP73SPOC.xml
      Filesize

      220B

      MD5

      204cd2201ae53440e44d76cb19ca92b6

      SHA1

      46cf4c7c5f9c0b4f66593d9ea8015a4abc9a9180

      SHA256

      21e22f2561ae7376c19f8d899d05e6c4ae55c620b2ec6d899639e83529d292fd

      SHA512

      90b4869a1d3451b36393982b41d72355c831c86e3eef819da3e5c95beb65d63224e3675dbe3d3b52a4d6495d56e3302f861a37b9492db62585f0f0b7a97b44f7

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\1WNDVRQC\qsml[10].xml
      Filesize

      217B

      MD5

      76c4b7c12cb688f70ff8944bb9172280

      SHA1

      5a56aa3c5098f569e0d39b27bc109379e9a4ccf6

      SHA256

      b07559e5515e52eddc868240764bbf7bd9ec6c1a6eb08308ea94c670bca244d7

      SHA512

      d4702e400ba15e00aca6afbd85427cbb6eb6fafadf34fd3cf59c0b4eb10d7864209a966b6496d908a5ed9a43ad55941074242c3fccdc28618c86f736136f516e

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\1WNDVRQC\qsml[1].xml
      Filesize

      463B

      MD5

      a9674b555faa6678a6bd312901153f96

      SHA1

      4bfa966bb277601bd202084181da994a4f708147

      SHA256

      a56e9597deb9ee9f23be0aa1e509969e6512558ff0c50727c98d6de7d9d484c7

      SHA512

      5150032da8426fb1c65dcc2ded30e32cf602c9a83db9eef01823ab4cf50f6688a4667bf7163e77f1e18f9a3da6e985b9a5ade7a8ffab60e90b07c5e038df342f

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\1WNDVRQC\qsml[2].xml
      Filesize

      494B

      MD5

      d84d0f22cde5dd0b36382a7f36d7190f

      SHA1

      a7dbdd81dad98549bd95dd8b69311a04629cfd73

      SHA256

      acd3e9b1126ec63ec4c78b8ca6af15759bb687b91295184b170bfabd3b7e8c66

      SHA512

      6cbb00d35f8a97b04e39329fabcafabb15369f90ef5bb1dbbc44ef5520929344a0bfee800a5ca465d94fa25aa105c3118b50f2e7a553a1fbff83c70648634b68

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\1WNDVRQC\qsml[3].xml
      Filesize

      520B

      MD5

      4ddc6aefb81df243e667e24ba917e2e7

      SHA1

      de66c83dba420a067bd3c1430283ed4e1f0ba69e

      SHA256

      6c5634e01fc8f84553da9c5610d2afa08d721afd249d080c02a1276329080075

      SHA512

      d8e279462611f1a6b721444c24c29e83cfadecd661d3cf0949d6b00a8109fc71402aa7113a0808d02052df56aa1d6f8326d1a6692ae3ae11b07d93ce24e2cbc2

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\1WNDVRQC\qsml[4].xml
      Filesize

      280B

      MD5

      91a41ea8062d19177fe98272a01b7a5e

      SHA1

      cd1f29a2b3b6d83920d2964eb8d6ab5634d22552

      SHA256

      52a5994486691e357efc65ddaf2db4a7a8fa9a82025410fa323badabd60aae32

      SHA512

      56848b03f0f5d4d6b500f51679ca72a646894da2124afffcde790949c6fb20dc5d04d45cab858d76f1550f0357f894c60eee1d1ebd5473cc873b2a648e26c4df

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\1WNDVRQC\qsml[5].xml
      Filesize

      248B

      MD5

      13466ed7143ec42c600013507fdc5ba9

      SHA1

      9f2cb905dc5d1586e2eb016a1761c262ff012ef8

      SHA256

      fb136067fb9163c357f7eb2241f394abea250d098e5a957e428706cdc7ab2fad

      SHA512

      092dd476dc1c4b9975c251c6a98c5465f3702a85f0cf448d1c1984648e33644bfbb74aea305ee186b26c57ba9001d4151facc06ac910c64b7e9d6585de44765c

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\1WNDVRQC\qsml[6].xml
      Filesize

      209B

      MD5

      cb2df7d6b674dcea87e8a59a33d3f77e

      SHA1

      55c9636dd5de38ad0f6bb4e939b1609bc387cf09

      SHA256

      5aca8172ca0d763a4db3e85df5bd248cf9b30a0f982b8f1fc0e9cfce52a9e454

      SHA512

      ad1cae24f1970359a5f71948ad4f0937e65a6db57e5124bfcfda74f4eb3d08778066072a56bae5aba1017afb333c62485087c12b7d07da51e7fdd26d2dd494fa

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\1WNDVRQC\qsml[7].xml
      Filesize

      210B

      MD5

      d298a70991c401348ec088dab21308ca

      SHA1

      88ee5f83a889012436e8c8992975d2e40298fd3d

      SHA256

      48725f6d4f18a4fb5e7218b53d02aaebd37c1146a224445812d3620736b5f0bd

      SHA512

      f68f23fe16e7f9a3792e6ee92b3cfb4311d90fc9205204063354fb21111958218b91309d9dfd38efde79243e35fb1a16bba16f8623217b25b98e76f9275c0639

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\1WNDVRQC\qsml[8].xml
      Filesize

      215B

      MD5

      1faf15e0b5bba0a0919147d3af27301a

      SHA1

      b20a26e452e1c8285488c4ccbed10bca2e15132d

      SHA256

      6022d1dfbe85861f492a93ed67b13fd18aeb27777a00a2931db61d5103414a21

      SHA512

      bdcf0115eb6beaa777a594b1422a6066b48a19ef2012a04b35034eab9fc9412bd803d13e61272a68b810882da6c147e7715de4e8ec6da477dd715eea11c39c45

      Download Submit

    • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\IE\1WNDVRQC\qsml[9].xml
      Filesize

      216B

      MD5

      43c72e61bfb2df3dc8c6fd533d8da47d

      SHA1

      ef2867e3e477b8e945a135a7c9832925757b9d8b

      SHA256

      342444c8fa2ebcf4747008a21f2d65867949a6f08ad40205bb97d2119aecc847

      SHA512

      77639b81a81c5d9612605949ca90e533024422f801279b63d89148791e527f58d5932a4e224c7b37d24e0e8d581c5a581c3393314c4542b3f11574d99e36a08c

      Download Submit