kutaki | 373d756bc01e971b8b84560d81ec37ee74e1e84908a4bc99ca128161f38ead3e | Triage

Submit
Reports

Overview

overview

Static

static

IncomeTax_...pt.exe

windows7_x64

IncomeTax_...pt.exe

windows10-2004_x64

Sharing

General

Target

f4cca71bfe910bcae77502109e261d42
Size

503KB
Sample

220211-vlvetachh6
MD5

f4cca71bfe910bcae77502109e261d42
SHA1

a8dac06ec6a7d9c2deac4e3a1811d4ac2a7be6f5
SHA256

373d756bc01e971b8b84560d81ec37ee74e1e84908a4bc99ca128161f38ead3e
SHA512

8587675d3b57549f5fa808f36ad1b26b95b28b7d4285913c7b1ea905e422834f2da4e6b13e23475ab4db3dd99e6b519e903200507e242794fdfe4bff2707ae92

Score

10^/10

kutaki keylogger stealer

Static task

static1

Behavioral task

behavioral1

Sample

IncomeTax_PaymentReceipt.exe

Resource

win7-en-20211208

kutaki keylogger stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

IncomeTax_PaymentReceipt.exe

Resource

win10v2004-en-20220113

kutaki keylogger stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  IncomeTax_PaymentReceipt.exe
- Size
  
  1.3MB
- MD5
  
  0692f7369ad0e05cb31e083aefba8e1c
- SHA1
  
  b2cf04e7983a1ed5b378475cfdf215b52de8d1ff
- SHA256
  
  dc90482c940a4ab897dcb64e468ccc1767ce48c249755bb625d4e48e718edfd6
- SHA512
  
  1cbdd7952e91aadd71f30c94c1467d17065cb7aae4c922fc904ca42fdb4ebcd8bfbfff291576b0f8b081ce92a6ebd9a4b6d1fe76ad8a7337d154cc79a03e9b87
Score

10^/10

kutaki keylogger stealer
- Kutaki
  Information stealer and keylogger that hides inside legitimate Visual Basic applications.
  stealer keylogger kutaki
- Kutaki Executable
- Executes dropped EXE
- Drops startup file
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

kutakikeyloggerstealer

behavioral2

kutakikeyloggerstealer

© 2018-2025

Terms | Privacy