General

  • Target

    Auto Rain Joiner.exe

  • Size

    7.3MB

  • Sample

    240418-vyr58aad59

  • MD5

    3f94ec0b3f49ebd658d471842bba7b45

  • SHA1

    c8d34f355f0bc4f5f68e88c0c9562cdf4fa22844

  • SHA256

    e99052d9bf1049f3962719c6725731f54d31662df0dfb245ab472450fa2eae59

  • SHA512

    31bab75d8f9226b31c5e9d220b843e03cb7df976803e955fa8424109391047130ae76899bbc6f6d4da79cf762552f375a74afce76daac119df93deba97f7c679

  • SSDEEP

    196608:C+ih8Fwj5aeNyFJMIDJpJgsAGKyRMCT0xQWk:ZLFMyFqypJgshMk02

Malware Config

Targets

    • Target

      Auto Rain Joiner.exe

    • Size

      7.3MB

    • MD5

      3f94ec0b3f49ebd658d471842bba7b45

    • SHA1

      c8d34f355f0bc4f5f68e88c0c9562cdf4fa22844

    • SHA256

      e99052d9bf1049f3962719c6725731f54d31662df0dfb245ab472450fa2eae59

    • SHA512

      31bab75d8f9226b31c5e9d220b843e03cb7df976803e955fa8424109391047130ae76899bbc6f6d4da79cf762552f375a74afce76daac119df93deba97f7c679

    • SSDEEP

      196608:C+ih8Fwj5aeNyFJMIDJpJgsAGKyRMCT0xQWk:ZLFMyFqypJgshMk02

    Score
    10/10
    • Detects Eternity stealer

    • Eternity

      Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.

    • Downloads MZ/PE file

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks