eternity | hxxp://mega[.]nz/file/XOwTGYBT#vlxooOF9y_Hf_BwJ4ntSFKn25HnsZ69kSPWBoWlK-Ls

Analysis

max time kernel
42s
max time network
48s
platform
android_x64
resource
android-33-x64-arm64-20240611.1-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240611.1-enlocale:en-usos:android-13-x64system
submitted
20-06-2024 19:11

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

http://mega.nz/file/XOwTGYBT#vlxooOF9y_Hf_BwJ4ntSFKn25HnsZ69kSPWBoWlK-Ls

Score

10^/10

eternity stealer

Malware Config

Signatures

Detects Eternity stealer 1 IoCs

stealer

resource	yara_rule
behavioral2/files/fstream-3.dat	eternity_stealer

Eternity
Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.
eternity

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.android.chrome

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.android.chrome

com.android.chrome
1⤵
- Checks CPU information
- Checks memory information
PID:4295

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/storage/emulated/0/Download/.pending-1719515557-Growpai.exe (deleted)

Filesize
1.4MB

MD5
dd6919ad934c8972b53e6316059e0c7a

SHA1
3b81df6b125172f611133369aba077d8166778e3

SHA256
ff6b84033429c415aa4d4527badae2d0eedf01ee31fd7416f996ba41efb9db10

SHA512
3b8afd3e53bb8543064eb80c33addad290fef848f00350fb415d3014ac813b931d2cbd2acb24f575f81187f0d739927bae70424218e6db5a11538c58a5f78409

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads