General
-
Target
Auto Rain Joiner.exe
-
Size
7.3MB
-
Sample
240418-vyr58aad59
-
MD5
3f94ec0b3f49ebd658d471842bba7b45
-
SHA1
c8d34f355f0bc4f5f68e88c0c9562cdf4fa22844
-
SHA256
e99052d9bf1049f3962719c6725731f54d31662df0dfb245ab472450fa2eae59
-
SHA512
31bab75d8f9226b31c5e9d220b843e03cb7df976803e955fa8424109391047130ae76899bbc6f6d4da79cf762552f375a74afce76daac119df93deba97f7c679
-
SSDEEP
196608:C+ih8Fwj5aeNyFJMIDJpJgsAGKyRMCT0xQWk:ZLFMyFqypJgshMk02
Malware Config
Targets
-
-
Target
Auto Rain Joiner.exe
-
Size
7.3MB
-
MD5
3f94ec0b3f49ebd658d471842bba7b45
-
SHA1
c8d34f355f0bc4f5f68e88c0c9562cdf4fa22844
-
SHA256
e99052d9bf1049f3962719c6725731f54d31662df0dfb245ab472450fa2eae59
-
SHA512
31bab75d8f9226b31c5e9d220b843e03cb7df976803e955fa8424109391047130ae76899bbc6f6d4da79cf762552f375a74afce76daac119df93deba97f7c679
-
SSDEEP
196608:C+ih8Fwj5aeNyFJMIDJpJgsAGKyRMCT0xQWk:ZLFMyFqypJgshMk02
-
Detects Eternity stealer
-
Eternity
Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.
-
Downloads MZ/PE file
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-