eternity | 21d5b46651ba9e0463aeaff71b5274e671d1818d7ca6ce2b95c92060d1a67853 | Triage

Sharing

General

Target

Growtopia-CID-Creator-v4-main.zip
Size

745KB
Sample

240703-nsp1ca1brc
MD5

8bf77e8ed082b3fda163587b57690324
SHA1

f3f581cf201a5492b76cfd5cbc0ef43c49e31837
SHA256

21d5b46651ba9e0463aeaff71b5274e671d1818d7ca6ce2b95c92060d1a67853
SHA512

ee8ce45114705a648089a8730243e6211b758cda99635cfb22584d8e4bc56c7ce183909e4aa58c650f5c709ae4dd9c79808405e7208ed8a8147ff1b359c170f2
SSDEEP

12288:fIlRWPpfFTnRDxC0U6/0YyQGNiSScd2HnH0GFJsZnM5vKWIj0hZLAyR7:fIlshHgl9QGUYd2HXsZnM5C7ocE7

Score

10^/10

eternity spyware stealer

Malware Config

Targets

- Target
  
  CID Creator v4/CID Creator v4.exe
- Size
  
  887KB
- MD5
  
  597144fc2c2ae9120504a43acd8ce132
- SHA1
  
  2ef994d2ef44f7c7e436702ef2887980c6d0b3a0
- SHA256
  
  1009114a68417ee36692f95cbada8e43800093626e30c30eef0a64f3bbcab71f
- SHA512
  
  8ed51d26e8790f19a552e8bc63de9bc17182d0262faf3727aac1ac4259709c4ca0ed693dd39b53c450d4aaefc3ee4cc82e69c77de958225c7cf5c51080701187
- SSDEEP
  
  12288:1TEYAsROAsrt/uxduo1jB0Y96qkK2QKy9hes7fKDF/c+zZeaySBcwkHv:1wT7rC6qGQKyCs7fKDC+QXKRkHv
Score

10^/10

eternity spyware stealer
- Detects Eternity stealer
  stealer
- Eternity
  Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.
  eternity
- Drops startup file
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2
- Target
  
  CID Creator v4/Memory.dll
- Size
  
  34KB
- MD5
  
  c548871fcf701fe39e1c429c210e2b2c
- SHA1
  
  fcc4c8f4c9050fb3e00792a04729a51f5866291c
- SHA256
  
  7534bbe4f084f9377e57940b98af5c817340b41c436e7f89b9bfac654c9bae50
- SHA512
  
  4f8d48991707ec07b9485c7f8ec421b4cf6835f39a7e644edd8d7bb222627a085fd4be49fa061a1214e465c361b683685718b50aebfd7dca417b161788ec4178
- SSDEEP
  
  768:CNcw1ADOkzoQzGYZZq1dE4mJDss8h9oGPLP8:CNcw1AD92YrMdE7JD6LP8
Score

1^/10
behavioral3 behavioral4
- Target
  
  CID Creator v4/MetroFramework.Design.dll
- Size
  
  16KB
- MD5
  
  ab4c3529694fc8d2427434825f71b2b8
- SHA1
  
  7be378e382e43eae84f1567b3570bca9a67e7697
- SHA256
  
  0a4a96082e25767e4697033649b16c76a652e120757a2cecab8092ad0d716b65
- SHA512
  
  02d7935f68c30457da79ad7b039b22caed11d8aedfec7c96619ac6da59ceb7c5e7a758dced64ec02d31c37a2befccdc8eb59be9e2dc849aa2bc22fabb5fa00a5
- SSDEEP
  
  384:HYAB8KPALBamLG3gckiBTVU6sgFf5L7WTOYKpKG4rw:HyLBamS3gckiBTVkgiVXr
Score

1^/10
behavioral5 behavioral6
- Target
  
  CID Creator v4/MetroFramework.dll
- Size
  
  345KB
- MD5
  
  34ea7f7d66563f724318e322ff08f4db
- SHA1
  
  d0aa8038a92eb43def2fffbbf4114b02636117c5
- SHA256
  
  c2c12d31b4844e29de31594fc9632a372a553631de0a0a04c8af91668e37cf49
- SHA512
  
  dceb1f9435b9479f6aea9b0644ba8c46338a7f458c313822a9d9b3266d79af395b9b2797ed3217c7048db8b22955ec6fe8b0b1778077fa1de587123ad9e6b148
- SSDEEP
  
  6144:M4S7k5hdCpU4YqfkUGz6KpQQZQHDXjNCdOZgLdL5DXBK:M4S7k5hdCEQHP1Zgj
Score

1^/10
behavioral7 behavioral8
- Target
  
  CID Creator v4/netstandard.dll
- Size
  
  103KB
- MD5
  
  e631c3ae18c51e1e3a67ca435109f203
- SHA1
  
  6bdb9ea4d9ad57491e2a9f0b2f0b7d7ef1a95a9e
- SHA256
  
  ddf8ecc841a4691864e52a15b5c01f9014380dbc3a9fe66c633d6f156b490d63
- SHA512
  
  1360845461d25709a68e1c101d6b3a3600813bffecf591cb6286c7a5eb36ee9ca7db9d8d39952f037ca929e5652c036833ba921aafe099589207f1ab21625607
- SSDEEP
  
  1536:N2Ec05j4eAH64rh5fSt5T9nFcI94OlaM1WGFwm+:8lK4eA7mDmOgM9K
Score

1^/10
behavioral10 behavioral9

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

stealereternity

behavioral1

eternityspywarestealer

behavioral2

eternitystealer

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10