General

  • Target

    d43338c66b34e2d4e15b090aeb58401c

  • Size

    592KB

  • Sample

    210616-ma6dnmnnse

  • MD5

    d43338c66b34e2d4e15b090aeb58401c

  • SHA1

    c0960248bdadcc3081309938eab48eb8002a91ff

  • SHA256

    3bc33661eae22696045e7b4b1f29344f4c33e53404ddee2f72fd188beea1d865

  • SHA512

    a525e70e8bc35e5e0d08d6a943c674729d90b87c484eaff80674c7270690ade9048d3cb258cdd056c8f30cd95c52b7d985d087317be0ea143adfcd81aada012c

Malware Config

Targets

    • Target

      d43338c66b34e2d4e15b090aeb58401c

    • Size

      592KB

    • MD5

      d43338c66b34e2d4e15b090aeb58401c

    • SHA1

      c0960248bdadcc3081309938eab48eb8002a91ff

    • SHA256

      3bc33661eae22696045e7b4b1f29344f4c33e53404ddee2f72fd188beea1d865

    • SHA512

      a525e70e8bc35e5e0d08d6a943c674729d90b87c484eaff80674c7270690ade9048d3cb258cdd056c8f30cd95c52b7d985d087317be0ea143adfcd81aada012c

    • Kutaki

      Information stealer and keylogger that hides inside legitimate Visual Basic applications.

    • Kutaki Executable

    • Executes dropped EXE

    • Drops startup file

    • Loads dropped DLL

MITRE ATT&CK Enterprise v6

Tasks