bdcebe6b1337d638c2570d9781583fffff590c060afca21ede8493b7174de412 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

setup_katana_zero_1.0.5_(30035).exe
Size

175.9MB
Sample

240319-xbjlnscb5w
MD5

275a3642a506819785178b133848fe36
SHA1

7af438e1754c7a8f277edb03ab05f6f22331ca67
SHA256

bdcebe6b1337d638c2570d9781583fffff590c060afca21ede8493b7174de412
SHA512

c660cf70d55773c3769b765de0e5ff16fe00d8746ab0179ef3a4fb5bd0044c6b43d9a38489579951351676d7b8146dd90324ccc1511d5f8decf1012be0c53b6b
SSDEEP

3145728:NpIC3SSlwLXoA/EIjpDai1L7BJfmiGn2RMWAPBsFsMGrATwVhO12lBzOHBKjjtB2:NpICicgoA/EIjd9ff5WWA81Ue2l1OHB1

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  setup_katana_zero_1.0.5_(30035).exe
- Size
  
  175.9MB
- MD5
  
  275a3642a506819785178b133848fe36
- SHA1
  
  7af438e1754c7a8f277edb03ab05f6f22331ca67
- SHA256
  
  bdcebe6b1337d638c2570d9781583fffff590c060afca21ede8493b7174de412
- SHA512
  
  c660cf70d55773c3769b765de0e5ff16fe00d8746ab0179ef3a4fb5bd0044c6b43d9a38489579951351676d7b8146dd90324ccc1511d5f8decf1012be0c53b6b
- SSDEEP
  
  3145728:NpIC3SSlwLXoA/EIjpDai1L7BJfmiGn2RMWAPBsFsMGrATwVhO12lBzOHBKjjtB2:NpICicgoA/EIjd9ff5WWA81Ue2l1OHB1
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Modifies file permissions
  discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2