eternity | 11453557f9a4bd7517eef24e5ec81d249ed5a1ad6a407508835412193217914a | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

64e19daf02...0N.exe

windows7-x64

64e19daf02...0N.exe

windows10-2004-x64

Sharing

General

Target

64e19daf02b572ffd7b81e175fa940a0N.exe
Size

1.7MB
Sample

240807-e818wa1enk
MD5

64e19daf02b572ffd7b81e175fa940a0
SHA1

ea28461cc50e677e07894f255aaeff5b8b01872e
SHA256

11453557f9a4bd7517eef24e5ec81d249ed5a1ad6a407508835412193217914a
SHA512

2f7c59250d351a6522612265a844a1dc30660edb20640326d64809e517610a84a5b118d071db7105537e7a43307fd7f9052978deb6cae61c07754ca431123da8
SSDEEP

12288:LTEYAsROAsrt/uxduo1jB0Y96qtfx5TyC0ISk6meNsRrIlfnWSuNFIWNATBIr9s2:LwT7rC6qRx9bibmwAefqInTWGTJpGx9

Score

10^/10

eternity discovery evasion stealer trojan

Static task

static1

stealer eternity

4 signatures

Behavioral task

behavioral1

Sample

64e19daf02b572ffd7b81e175fa940a0N.exe

Resource

win7-20240704-en

eternity evasion stealer trojan

windows7-x64

11 signatures

120 seconds

Behavioral task

behavioral2

Sample

64e19daf02b572ffd7b81e175fa940a0N.exe

Resource

win10v2004-20240802-en

eternity discovery evasion stealer trojan

windows10-2004-x64

12 signatures

120 seconds

Malware Config

Targets

- Target
  
  64e19daf02b572ffd7b81e175fa940a0N.exe
- Size
  
  1.7MB
- MD5
  
  64e19daf02b572ffd7b81e175fa940a0
- SHA1
  
  ea28461cc50e677e07894f255aaeff5b8b01872e
- SHA256
  
  11453557f9a4bd7517eef24e5ec81d249ed5a1ad6a407508835412193217914a
- SHA512
  
  2f7c59250d351a6522612265a844a1dc30660edb20640326d64809e517610a84a5b118d071db7105537e7a43307fd7f9052978deb6cae61c07754ca431123da8
- SSDEEP
  
  12288:LTEYAsROAsrt/uxduo1jB0Y96qtfx5TyC0ISk6meNsRrIlfnWSuNFIWNATBIr9s2:LwT7rC6qRx9bibmwAefqInTWGTJpGx9
Score

10^/10

eternity evasion stealer trojan discovery
- Contains code to disable Windows Defender
  A .NET executable tasked with disabling Windows Defender capabilities such as realtime monitoring, blocking at first seen, etc.
- Detects Eternity stealer
  stealer
- Eternity
  Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.
  eternity
- Modifies Windows Defender Real-time Protection settings
  evasion trojan
- Disables Task Manager via registry modification
  evasion
- Drops startup file
- Executes dropped EXE
- Windows security modification
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

stealereternity

behavioral1

eternityevasionstealertrojan

behavioral2

eternitydiscoveryevasionstealertrojan

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.