9eafaf5e0fb9a91f2887f3e81fd7ad6d70973ff7cbb807dab4bf0f319a668b95 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

enbash.tar
Size

4.2MB
Sample

231220-grmehaehaj
MD5

a223dff2964b0021869b2a3a6f26c79d
SHA1

80487cf8a8c6b5f5a6cccd5c2ad7e23a1e167448
SHA256

9eafaf5e0fb9a91f2887f3e81fd7ad6d70973ff7cbb807dab4bf0f319a668b95
SHA512

0f2af9136157e36ab42ca15e09634eab2d1cd72ac6d03d55ec730ba513d5af45885089dfdd73b95830df4cd8308f817fc76f645cda49c27b4839eeab7ed3f108
SSDEEP

49152:I/eNZOzkUmyXt8YtoqqHOw2qTmEcjQ1m8SyTDM1vgiI:n

Score

7^/10

Malware Config

Targets

- Target
  
  enbash.tar
- Size
  
  4.2MB
- MD5
  
  a223dff2964b0021869b2a3a6f26c79d
- SHA1
  
  80487cf8a8c6b5f5a6cccd5c2ad7e23a1e167448
- SHA256
  
  9eafaf5e0fb9a91f2887f3e81fd7ad6d70973ff7cbb807dab4bf0f319a668b95
- SHA512
  
  0f2af9136157e36ab42ca15e09634eab2d1cd72ac6d03d55ec730ba513d5af45885089dfdd73b95830df4cd8308f817fc76f645cda49c27b4839eeab7ed3f108
- SSDEEP
  
  49152:I/eNZOzkUmyXt8YtoqqHOw2qTmEcjQ1m8SyTDM1vgiI:n
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2