eternity | c6d2e587b941ba4be62d9ca99e70db987a3a17a3128508cf69c86ac15e2d589b | Triage

Sharing

General

Target

GABB.0.6.20.zip
Size

2.5MB
Sample

240613-2wgp2atfqf
MD5

9677bed9b47650af4ce668771025aa46
SHA1

e3976927340836348a63d53f8a4197587bfa9482
SHA256

c6d2e587b941ba4be62d9ca99e70db987a3a17a3128508cf69c86ac15e2d589b
SHA512

c8998b2c0609ec3b6ba7cf8c8504fbe4c535162426d11b08f3a088dee908bb6e6b59f86af447009690cd21657a7abdf0202ae86a977e2632a13918f59c16f26a
SSDEEP

49152:VIH+LrDl8CIZKWC8ulQiriV/jO2zdNzJYR31RF3p6CzRdWbgjcDPIjib:VnrDtWWfcOaNzqhtzRSgjcDPIjY

Score

10^/10

eternity stealer

Malware Config

Targets

- Target
  
  GABB/GABB.exe
- Size
  
  5.2MB
- MD5
  
  c90ce1a6c8c6185af5c85efa5a3d9eb2
- SHA1
  
  b4b2bc553bd0ed22c56c5288cd533f2e9eab1597
- SHA256
  
  4bcd41b460dc664cbeb181b9516d6ccc39eb78cfb9f7c106bf904634163a76ac
- SHA512
  
  dde898df373f3cdaadee89e7bb387be170e6c7959ecabee92dc8bb6de4de8d8164f51d2ba8b674c2dee33fbcc2700d3aa27cc47c67cd46cb4885791b83423772
- SSDEEP
  
  49152:MrC6q5wyKyKyKyKyOVoeWRd2Ru1j0IAibunmqJNAivkCnVHMDsXO1ak2zmByg2z3:MrGw////+F4rSO0Yhsp9v3eEj53f
Score

10^/10

eternity stealer
- Detects Eternity stealer
  stealer
- Eternity
  Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.
  eternity
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops startup file
- Executes dropped EXE
behavioral1 behavioral2
- Target
  
  GABB/GDLL.dll
- Size
  
  162KB
- MD5
  
  6c01964ad639600ac4193fa6f4a1f735
- SHA1
  
  92172aaee2f69b1afc657adc1a37a7d0b72e3363
- SHA256
  
  681460853a605827e516f0cbe03a2746bb068d2d7a11603d89e9ce2b2cb75380
- SHA512
  
  6093d7f405346d895f5154b076ccbb42fed41a1ca6e88e60369e30ad33773b9a4d36681fe6d9dc9a878cc3c8057c75f0b2b5d9858d654ba738fa4c8c9771c6c9
- SSDEEP
  
  3072:J+Os09onDko0wWN+S9k5hISQ8vZR+ycwNYDvRvuIoEFxnuzs:J+W9QoB+S89Q8vZR+yc/RvuIoEFx8s
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

stealereternity

behavioral1

eternitystealer

behavioral2

eternitystealer

behavioral3

behavioral4