kutaki | d7d03d5c9764d32560fbd5b0cdbae78d61cdf66ae7f81031fb1505d355fc978c | Triage

Submit
Reports

Overview

overview

Static

static

Tax Payment.exe

windows7_x64

Tax Payment.exe

windows10_x64

Sharing

General

Target

0580c88e5ec1b9a64b1cdf8aa20d1886
Size

379KB
Sample

211201-k83dtsebh3
MD5

0580c88e5ec1b9a64b1cdf8aa20d1886
SHA1

2715a429ba3d1555255a726818999e5df6840cfb
SHA256

d7d03d5c9764d32560fbd5b0cdbae78d61cdf66ae7f81031fb1505d355fc978c
SHA512

8f056ff8791bcb33008aeba0ed03df50eb958b25d9e2852755cbc3a41b0a296a20f7b365e1eb5d464a6443819d1fe7edb7e4203b047602334303ee911c76bbc9

Score

10^/10

kutaki keylogger stealer

Static task

static1

Behavioral task

behavioral1

Sample

Tax Payment.exe

Resource

win7-en-20211104

kutaki keylogger stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Tax Payment.exe

Resource

win10-en-20211014

kutaki keylogger stealer

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  Tax Payment.exe
- Size
  
  592KB
- MD5
  
  ea8ff94f74983ea0fe9f96f4df50850b
- SHA1
  
  f1bd1b5edae636b45833d3c080a65c7cf3b47ed6
- SHA256
  
  991e72f2d6213d5841b0286574c5d0a387c662c9912faf477183768538754e4b
- SHA512
  
  6df7184111dcdf812bc44e006eafd232946014678c3d24742fe10742dfe97ce08548d0dca71f4b28265abf7e248cb0435e108f787fa73f98222f419d2acc6177
Score

10^/10

kutaki keylogger stealer
- Kutaki
  Information stealer and keylogger that hides inside legitimate Visual Basic applications.
  stealer keylogger kutaki
- Kutaki Executable
- Executes dropped EXE
- Drops startup file
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

kutakikeyloggerstealer

behavioral2

kutakikeyloggerstealer

© 2018-2025

Terms | Privacy