kutaki | b6c1798151f3fab27920c3d9e00a67b35df3d814a294701b3eec962aba6bd201 | Triage

Submit
Reports

Overview

overview

Static

static

image.exe

windows7_x64

image.exe

windows10-2004_x64

Sharing

General

Target

b6c1798151f3fab27920c3d9e00a67b35df3d814a294701b3eec962aba6bd201
Size

341KB
Sample

220521-nplthshbbl
MD5

6d03c4ab5179f9d57ebcc10de158c2ad
SHA1

8680293da17a8fb77941cb231ddeeba8431b19ee
SHA256

b6c1798151f3fab27920c3d9e00a67b35df3d814a294701b3eec962aba6bd201
SHA512

bbae54616eaaf9b656703120a0b9881b84a92214fb915fe4be6b3225e3ce17163bf1436ce26058fb85a93bc76cb11ad57b49557e62747bfe2e6dde5c53861e53

Score

10^/10

kutaki keylogger stealer

Static task

static1

Behavioral task

behavioral1

Sample

image.exe

Resource

win7-20220414-en

kutaki keylogger stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

image.exe

Resource

win10v2004-20220414-en

kutaki keylogger stealer

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  image.exe
- Size
  
  536KB
- MD5
  
  76430208466ca619a470ab10e9ce6848
- SHA1
  
  a7730a38f002dfe4e59a26ec2cc46fdc422e2708
- SHA256
  
  5bd645a7783a25d2caa48ee448ad1e47c00ae25e5a7fd9b304ad9422e9e79fd5
- SHA512
  
  cad3a9d15632488ad418e17472215199630910f9adeb5d076e7a38c95b8b8e06fbe8263b9a3e2853e84b18e3754fc58ffb01717e845ffdf48fecdb397e92c22b
Score

10^/10

kutaki keylogger stealer
- Kutaki
  Information stealer and keylogger that hides inside legitimate Visual Basic applications.
  stealer keylogger kutaki
- Kutaki Executable
- Executes dropped EXE
- Drops startup file
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

kutakikeyloggerstealer

behavioral2

kutakikeyloggerstealer

© 2018-2024

Terms | Privacy