eternity | 781990bdb6e701d3f834a021f055e30dee58ceec62de77b77e2ed8ead4498ac0 | Triage

Submit
Reports

Overview

overview

Static

static

1

monk fish ...nd.png

windows10-2004-x64

Sharing

General

Target

monk fish complete with background_LE_auto_x4_no_background.png
Size

406KB
Sample

241217-1fjn1szlhk
MD5

b3e6b9787924ad7ba9dd692908a1af43
SHA1

45425326b3df108dbb9a81ff9f498dd74d14267c
SHA256

781990bdb6e701d3f834a021f055e30dee58ceec62de77b77e2ed8ead4498ac0
SHA512

b69268b2706fc13c8f707911fa241fca1c545d5889fbe86cbd68318a3169aacbe780f322c109c8e61d9ed42633197da1db0d1c1683450378dde1113f78fd9582
SSDEEP

12288:pP2yLkqbsEM/RaBGhyMyjYiiqrghZ6YKZ5bypmQ0EMA:pnLkqsEM/8B8lyjYiOP0ypf0tA

Score

10^/10

eternity discovery evasion phishing spyware stealer

Static task

static1

Behavioral task

behavioral1

Sample

monk fish complete with background_LE_auto_x4_no_background.png

Resource

win10v2004-20241007-en

eternity discovery evasion phishing spyware stealer

windows10-2004-x64

21 signatures

150 seconds

Malware Config

Targets

- Target
  
  monk fish complete with background_LE_auto_x4_no_background.png
- Size
  
  406KB
- MD5
  
  b3e6b9787924ad7ba9dd692908a1af43
- SHA1
  
  45425326b3df108dbb9a81ff9f498dd74d14267c
- SHA256
  
  781990bdb6e701d3f834a021f055e30dee58ceec62de77b77e2ed8ead4498ac0
- SHA512
  
  b69268b2706fc13c8f707911fa241fca1c545d5889fbe86cbd68318a3169aacbe780f322c109c8e61d9ed42633197da1db0d1c1683450378dde1113f78fd9582
- SSDEEP
  
  12288:pP2yLkqbsEM/RaBGhyMyjYiiqrghZ6YKZ5bypmQ0EMA:pnLkqsEM/8B8lyjYiOP0ypf0tA
Score

10^/10

eternity discovery evasion phishing spyware stealer
- Detects Eternity stealer
  stealer
- Eternity
  Eternity Project is a malware kit offering an info stealer, clipper, worm, coin miner, ransomware, and DDoS bot.
  eternity
- Eternity family
  eternity
- Disables Task Manager via registry modification
  evasion
- A potential corporate email address has been identified in the URL: [email protected]
  phishing
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials from Password Stores

Credentials from Web Browsers

Unsecured Credentials

Credentials In Files

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

eternitydiscoveryevasionphishingspywarestealer

© 2018-2024

Terms | Privacy