kutaki | 5859447c59da8ccf030681f8e0bcfdce10caf46532c624fa63b6e9009f840c39 | Triage

Sharing

General

Target

Invoice No 80659.bat
Size

420KB
Sample

230810-fxbphsbg41
MD5

faab4fd3a2fe8cb413f08e09435a6163
SHA1

48635d53b9f4e46debc72bebc86b67a8e2fc5050
SHA256

5859447c59da8ccf030681f8e0bcfdce10caf46532c624fa63b6e9009f840c39
SHA512

9db97c93d006540e2c089d9e97836a506af1c24c364b80b2920d5c1a0a7e03e3165496d384fafc978db33657b9cd6fc757203c256233992c80ed10c6e5c31ffd
SSDEEP

12288:lzQkJorB46A9jmP/uhu/yMS08CkntxYRZJL:lzd2ufmP/UDMS08Ckn3uh

Score

10^/10

kutaki

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Targets

- Target
  
  Invoice No 80659.bat
- Size
  
  420KB
- MD5
  
  faab4fd3a2fe8cb413f08e09435a6163
- SHA1
  
  48635d53b9f4e46debc72bebc86b67a8e2fc5050
- SHA256
  
  5859447c59da8ccf030681f8e0bcfdce10caf46532c624fa63b6e9009f840c39
- SHA512
  
  9db97c93d006540e2c089d9e97836a506af1c24c364b80b2920d5c1a0a7e03e3165496d384fafc978db33657b9cd6fc757203c256233992c80ed10c6e5c31ffd
- SSDEEP
  
  12288:lzQkJorB46A9jmP/uhu/yMS08CkntxYRZJL:lzd2ufmP/UDMS08Ckn3uh
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2