Security News > 2022 > May > Threat Actors Use Telegram to Spread ‘Eternity’ Malware-as-a-Service

The new malware service, dubbed the Eternity Project by the threat actors behind it, allows cybercriminals to target potential victims with a customized threat offering based on individual modules they can buy for prices ranging from $90 to $490, researchers from security firm Cyble wrote in a blog post published Thursday.

The modules include a stealer, clipper, worm, miner and ransomware, depending on what type of attack a threat actors wants to mount, according to the post.

Threat actors are selling the Eternity Stealer for $260 as an annual subscription.

The module steals passwords, cookies, credit cards and crypto-wallets from various applications-such as all the most popular browsers, messaging apps and cryptocurrency wallets-on the victim's machine and sends them to the threat actor's Telegram Bot.

The Eternity Clipper-malware that monitors the clipboard of an infected machine for cryptocurrency wallets and replaces them with the threat actor's crypto-wallet addresses-is being sold for $110. The malware, like the miner, also can hide from the task manager, as well as includes other features.

Threat actors are selling the Eternity Worm, a virus that spreads through infected machines via files and networks, for $390. Features of the worm include its ability to spread through the following: USB Drives, local network shares, various local files, cloud drives such as GoogleDrive or DropBox, and others.

News URL

https://threatpost.com/telegram-spread-eternity-maas/179623/