eternity | eae2bbca8b001849a03bad0b21d9e876c1931685ce37876e08a9dc77e022bfad | Triage

Submit
Reports

Overview

overview

Static

static

Worm (1).exe

windows11-21h2-x64

Sharing

General

Target

Eternity Worm - 09.11.2022.zip
Size

1.2MB
Sample

240616-qghs1avare
MD5

a68f97544c9b41270008b8bf68992a75
SHA1

a1ccc56eca977792cf7a751dff4ebf1f8afe8591
SHA256

eae2bbca8b001849a03bad0b21d9e876c1931685ce37876e08a9dc77e022bfad
SHA512

9bb6e21c98dada07b3c0d0c7f6addaf9d043441282fc5df4c5f348fffac047e5e662ef92a9f9df617cab79e1abbbb8648a4a3a32c1f2044aebf278fcdbdf68b3
SSDEEP

24576:BnmwNxqyJyiBUlPG+yrdek3XI3xV8N2chJN2O8P9XrYRKx9BrcH6Nizl+lBB/ZmI:BFT/yowuHd0xo146MBu6NiGn/py6ey

Score

10^/10

eternity

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Worm (1).exe

Resource

win11-20240611-en

windows11-21h2-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

eternity

C2

http://eternityms33k74r7iuuxfda4sqsiei3o3lbtr5cpalf6f4skszpruad.onion

Attributes

payload_urls
https://raroford3242.xyz/myupdate.exe

https://raroford3242.xyz/Sklmsstregens.vbs, https://raroford3242.xyz/remcexecrypt.exe, https://raroford3242.xyz/redlcryp.exe, https://raroford3242.xyz/racoocry.exe

https://raroford3242.xyz/myupdate.exe

https://raroford3242.xyz/myupdate.exe

Targets

- Target
  
  Worm (1).exe
- Size
  
  1.3MB
- MD5
  
  4a9ffb6962544b4dd55ce6ff568810b7
- SHA1
  
  a04a58215250d0bbe79fd946e6f5a73e8be27133
- SHA256
  
  8102f6139e928e1e844e7625f41bfa2b65f6ba05e95c43f1ecb329d72a91592b
- SHA512
  
  5b7e84b8a49200960a5312a373ef6245c2d997b5e3b9a761cb15a83ffe2edf9dc860c1bcd7ebb9eb7cd774c6f1364d505016446f713acfdfb682bb01c148053b
- SSDEEP
  
  24576:mckH+O5MMsj/8oJ0HOgwzMIdEyaXC772Q9NXw2/wPOjdGxY:mBHZ5MMpoJOp+MIVai7Tq24GjdGS
Score

10^/10

eternity
- Eternity
  Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.
  eternity
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy