kutaki | dbdac076ffd6370782944478bf95d25a6bf0fbf66bd2f2a180af40574e8f33de | Triage

Sharing

General

Target

RTGS_Note.zip
Size

2.1MB
Sample

221103-glwe8aehh2
MD5

1168aea8774084b87b290dfabd0abcbf
SHA1

55c666d01a34f104f95b54721053fe8cbcd15e63
SHA256

dbdac076ffd6370782944478bf95d25a6bf0fbf66bd2f2a180af40574e8f33de
SHA512

3729c56d0aea0acd9a26acd4f53ad5bfb1d177c8a99dbc9e651dbb74bae8c7a7035189958978afbdbab328f559192e1a529386f7ae51934b0dfd3525f89335ac
SSDEEP

49152:8QnI7FlwmUnJR0YdGahOJs+9GvkSLYRj2HYftrybYiYIl8f/aE8n6:8YuIRTG4OJs9kSiSYV+bYIl8f/aE86

Score

10^/10

kutaki

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Targets

- Target
  
  RTGS_Note.cmd
- Size
  
  2.3MB
- MD5
  
  5cee36976a9c52e070139bd9d1ae49c0
- SHA1
  
  73aebca1dd942abcefb89747a995ded655910b66
- SHA256
  
  4462a3f62272eb2165d6068b534c4f0677bddb7cd97aac84406af725845711dd
- SHA512
  
  00a62e1e747f84c12a88b6dc748b7ee02024cd8bd8b08889010b3a10668529cc8a0c44ed01eba3a27850067cbeadc8b1ae046fff0ac3bf7a9e7d65bc009e63b5
- SSDEEP
  
  49152:ylkWk5cS7a+9XYaQhZehc4mTYJ78V9gyBn4cDfmP/SA8N:eajJaZ942KQV9hp4kfmP/SA8
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2