kutaki | 4b0f2eb3c83c7a8f9bf0f945feeadad30cb7e5432f6c66fe7d6b921925ce142a | Triage

Submit
Reports

Overview

overview

Static

static

Tax Paymen...an.exe

windows7-x64

Tax Paymen...an.exe

windows10-2004-x64

Sharing

General

Target

Tax Payment Challan.exe
Size

768KB
Sample

220722-fjet1scff3
MD5

d25f259e5943e02244d5a6fb3cc9b778
SHA1

ae4c93a5264acdf26a11cd9165f7382afceedb50
SHA256

4b0f2eb3c83c7a8f9bf0f945feeadad30cb7e5432f6c66fe7d6b921925ce142a
SHA512

8363351c576a8be88a02408ebcfc60a6c5abc0db402cd12b349c80b787bb3fd9bc2ab6206c3a7293ff187b61d0da2cdf6100020836c8a590a2181689c72fd019

Score

10^/10

kutaki keylogger stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Tax Payment Challan.exe

Resource

win7-20220718-en

kutaki keylogger stealer

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

Tax Payment Challan.exe

Resource

win10v2004-20220721-en

kutaki keylogger stealer

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Extracted

Family

kutaki

C2

http://newloshree.xyz/work/kenny3.php

Targets

- Target
  
  Tax Payment Challan.exe
- Size
  
  768KB
- MD5
  
  d25f259e5943e02244d5a6fb3cc9b778
- SHA1
  
  ae4c93a5264acdf26a11cd9165f7382afceedb50
- SHA256
  
  4b0f2eb3c83c7a8f9bf0f945feeadad30cb7e5432f6c66fe7d6b921925ce142a
- SHA512
  
  8363351c576a8be88a02408ebcfc60a6c5abc0db402cd12b349c80b787bb3fd9bc2ab6206c3a7293ff187b61d0da2cdf6100020836c8a590a2181689c72fd019
Score

10^/10

kutaki keylogger stealer
- Kutaki
  Information stealer and keylogger that hides inside legitimate Visual Basic applications.
  stealer keylogger kutaki
- Kutaki Executable
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops startup file
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

kutakikeyloggerstealer

behavioral2

kutakikeyloggerstealer

© 2018-2025

Terms | Privacy