General

  • Target

    image.exe

  • Size

    2.7MB

  • Sample

    210820-zb63ezp4je

  • MD5

    e469d954208648089041e21f6d882702

  • SHA1

    454bf06e9f471a7590187c7806231cb957fec5e5

  • SHA256

    03dd5030cf9419d5f328b6ddf8bce820199c0aad46caf85c68aeb1645133972d

  • SHA512

    54f53702056611a8be894a77651f8635bfddaa0be1705a983497b290b4b1ea8fd8513db4ddcb0831beba9fda421efb2cf67921679a5863ead16462fba478ca9a

Malware Config

Targets

    • Target

      image.exe

    • Size

      2.7MB

    • MD5

      e469d954208648089041e21f6d882702

    • SHA1

      454bf06e9f471a7590187c7806231cb957fec5e5

    • SHA256

      03dd5030cf9419d5f328b6ddf8bce820199c0aad46caf85c68aeb1645133972d

    • SHA512

      54f53702056611a8be894a77651f8635bfddaa0be1705a983497b290b4b1ea8fd8513db4ddcb0831beba9fda421efb2cf67921679a5863ead16462fba478ca9a

    • Kutaki

      Information stealer and keylogger that hides inside legitimate Visual Basic applications.

    • Kutaki Executable

    • Executes dropped EXE

    • Drops startup file

    • Loads dropped DLL

MITRE ATT&CK Enterprise v6

Tasks