Katana SS Tool[.]rar | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Katana SS Tool.rar
Size

2.4MB
MD5

d5914369a1ea648c7a49a00dcc832542
SHA1

ca1725348c1b34ba17c520e486b59b158c573fb0
SHA256

e9ddbe183b2d9787faaac386c5093c592b0373c4cbf613594d58c342ee032510
SHA512

a845fe67072a5767643f250f06d2b3e5fc148ef7492583e4e63c81b23bf1f80c954b5cd029f2154ba9ecf9d9b99e6b034ef851990d16e99a30e7589ace59bb89
SSDEEP

49152:QOyIzeZUkPKy6xFWUogywAR0N0PVEx4P5mbG92Ns02RNH3X:QlI+UkPKZAgywAkAhhl2QB3X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/katana-without-pins.exe

Files

Katana SS Tool.rar
.rar
katana-without-pins.exe
.exe windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 5.4MB - Virtual size: 5.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ