kutaki | 6ddce243cb75890ad12f49aea852567b778d4f6708d2446b16cbc8c2e41dcfac | Triage

Sharing

General

Target

CREDDIT.zip
Size

508KB
Sample

230619-gkvgjabg92
MD5

89e501b000a3b89e7cfdebc994825d11
SHA1

021d0a57ae448e227848120799bb7b18f498623d
SHA256

6ddce243cb75890ad12f49aea852567b778d4f6708d2446b16cbc8c2e41dcfac
SHA512

cedb36fe7029904fb38d29505cfcc7317a08c149dee4abebad5d955f9494306a92134a98aa942099920ca45483e5eb22bd5d373574430e4efe695417336f201e
SSDEEP

12288:5xBtzaS3WddhMA54HJ48A9lmb/wLu5IYS0GCkHZBYRL:5x65dRmCHmb/eBYS0GCkHTY

Score

10^/10

kutaki

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Targets

- Target
  
  CREDIT.cmd
- Size
  
  712KB
- MD5
  
  9fdd99756f5effa93555bc83d6ebdf23
- SHA1
  
  a6eefae48bdcb079c78ce3388f32d5b78893752b
- SHA256
  
  c17c83815d15410f04660ac7165274004e73674d08366210f5a3d1956762d6d9
- SHA512
  
  2adb90293a1e4a8e421ab821c081d81f72abb48694582356c8e892754e1d6ccf9b2afba810f2c77f2d75e7ca5e9215d57ba934a699ef7839588b541d1ba8f915
- SSDEEP
  
  12288:lU9L5ke34DiInI5mzrz46A9jmP/uhu/yMS08CkntxYR:OLEDVI5mfEfmP/UDMS08Ckn3
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2