eternity

General

Target

Amax Autofarm V4.4.rar
Size

10.4MB
Sample

240724-knjqzsxcnl
MD5

7785ece73bc481670e69d1162ef3c5e3
SHA1

52c7ce4abb956710de75780638188c8ccac08d79
SHA256

61cc5d5a7dad4c74dfdc75c9742c1a721931a2c4bc2f4a6a609ce27dc7df059b
SHA512

52c5291188aeb5deaa374e2ab62927d074d32097d1ceb57f270c29f82681161b423fd073b879b598601d698961b927741c992a3b81ec0552d0c9d663eb004e64
SSDEEP

196608:2VugAajdNX/eIqNkjvJIbqewJrHK1OZGQla91yhNJOUjwwLoSn5yQP:2QgBjXF5CqeGrK1/Qlp/JOOLoS1

Score

10^/10

Malware Config

Targets

- Target
  
  Amax Autofarm V4.4.rar
- Size
  
  10.4MB
- MD5
  
  7785ece73bc481670e69d1162ef3c5e3
- SHA1
  
  52c7ce4abb956710de75780638188c8ccac08d79
- SHA256
  
  61cc5d5a7dad4c74dfdc75c9742c1a721931a2c4bc2f4a6a609ce27dc7df059b
- SHA512
  
  52c5291188aeb5deaa374e2ab62927d074d32097d1ceb57f270c29f82681161b423fd073b879b598601d698961b927741c992a3b81ec0552d0c9d663eb004e64
- SSDEEP
  
  196608:2VugAajdNX/eIqNkjvJIbqewJrHK1OZGQla91yhNJOUjwwLoSn5yQP:2QgBjXF5CqeGrK1/Qlp/JOOLoS1
Score

3^/10
behavioral1
- Target
  
  Amax Autofarm V4.3/Amax.ini
- Size
  
  88B
- MD5
  
  a31f0ac79515866888d9360b88b77b2f
- SHA1
  
  12b501cae400da21253f1af4ff7afc93b6c69c97
- SHA256
  
  4fd7d04ef3fbd4eac08fc02e272d82dcdd94f43e09510d47e56133d642f852ec
- SHA512
  
  5510f9980868e2242b5c1d73768d9d544f1cce6adba03247d2e7d4a959d919efbf6f2d6d8e444059c6d482bfb50a67130a963396c83cad300619dc401db1b8be
Score

1^/10
behavioral2
- Target
  
  Amax Autofarm V4.3/AmaxPNB v4.3.exe
- Size
  
  885KB
- MD5
  
  a27989de301a220c5d3d72b2b2ec6ab6
- SHA1
  
  ebd0e55a5a1515cd22333ee4c2facea3ef0ec355
- SHA256
  
  d427c953205de244b5396136c52993245e806290088515a0c33da59b9e1563e6
- SHA512
  
  38da48e034491884db1a7bef36b43d51ceefd1b70ad2668562c9533d44783d4c45662414f7c56ec5f43d2266748294f76ae3f14d10113c64b42d91a5b5f43831
- SSDEEP
  
  12288:VTEYAsROAsrt/uxduo1jB0Y96qpqlVdEtKk/O0rSdLtt3gTMPyfZz4dEadzfWGxX:VwT7rC6qpqVMKk2pJ8ULH
Score

10^/10

eternity discovery stealer
- Detects Eternity stealer
  stealer
- Eternity
  Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.
  eternity
- Drops startup file
- Executes dropped EXE
behavioral3
- Target
  
  Amax Autofarm V4.3/ReadME.txt
- Size
  
  1KB
- MD5
  
  006e75e4a4ade84ca798e398faa7f28c
- SHA1
  
  78eaf88cf8e405c2ee6a28dff9affd5378fb4a09
- SHA256
  
  511dd28ae0a0419fe70f221b5e4a187eb9974445f0c08f5cdc0e15d23c2bbd30
- SHA512
  
  6578c0415b82c1b6ed389183555432fb58987f9b193b146e70ae4bb6647dce46d2d5cc1d3a4ad4360443a2fd0988332203ddf898103eae0dc0d134a341a21224
Score

1^/10
behavioral4
- Target
  
  Amax Autofarm V4.3/System.Buffer.dll
- Size
  
  49KB
- MD5
  
  1a73bf3b615f1fbaed1835fe9edf3120
- SHA1
  
  7f5eee5dca7fb6191f6eb04774b4a2bfae9dcbb0
- SHA256
  
  23b42a30eeb9267bf2ca8b7a15cac9b9d3dd163c4f60c7dceb38a75a88624358
- SHA512
  
  98de178eb7d569d5bd0fbbe73741546434264142424d10024c5e5e205dc8c01d3f4906bf1142957ae4d33f69fc0dc82f8eeb3e9b90a4d5450c26d8514a83b95e
- SSDEEP
  
  1536:gCl3HU3OcRnxADUA04dPcpywfiaHTMSp:gCl3U3OcRn6E3f1zjp
Score

1^/10
behavioral5
- Target
  
  Amax Autofarm V4.3/System.Memory.dll
- Size
  
  9.9MB
- MD5
  
  3ddd0018adf3d0ba9d7e8ef5dae3d1ec
- SHA1
  
  ddc6e8baed1a0b042b4e1fca35f9b230d1f77605
- SHA256
  
  7239a8bde38b47e0a67e1e7b2549810d6647e9e825566c13af225fe23e5a3a7e
- SHA512
  
  93c9c9abdbef99f8c6f5dc6e9d24bacc7c917ce5de9c7826f949edb5c07bd7ae48fdf44226b6a938c7f18f6de8034ca9b0b5f5f93e25faf3e5b2d5612ca3e89d
- SSDEEP
  
  196608:eZ1gpzM+Mc6WtvdSk4rsw8N2dwevXxZMqou+BMhVPiBXY/Bz1O1vNuCZqyEj76f:eIiTFWtvVN2GKx1oShQBXYZzk1luzjOf
Score

1^/10
behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1

T1082

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Detects Eternity stealer

Drops startup file

Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6