kutaki | d20cc2f82d1d63527d0cf1a7bace68902642a9674de5980342ceb56fc26aa4bf | Triage

Sharing

General

Target

Credit_Note.zip
Size

2.1MB
Sample

230814-kv58kaah76
MD5

7ffcde202dc3ed65213625d7710c1203
SHA1

ad16dae6061fbae2cf7fc3bedea45244ad4cc006
SHA256

d20cc2f82d1d63527d0cf1a7bace68902642a9674de5980342ceb56fc26aa4bf
SHA512

7dcdc8dad63133df99e6842b541da6a6db3f51e6ec8f666d6668a3f8384e44ffbcc83392bbdab8ab71ce11bf2d8a317d795340ec2e8bef15cf7215663ec9a72c
SSDEEP

49152:9j2q4r3NkshanpsACDq6VTavdkDFBxPfjS5Quv3mb/ua0NZE:9r4r3NN07CDEvd+VHkQu3mb/ua0M

Score

10^/10

kutaki

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Targets

- Target
  
  Credit_Note.bat
- Size
  
  2.3MB
- MD5
  
  40005c6ddba07071455a6e857863f0a8
- SHA1
  
  c4d5a7a58b543e27a92f3a4593cfde91cf315fc1
- SHA256
  
  dbe4a8777f3658cef44d3f6fc42a77eda7673797f09c24cdc8338776c8dc973b
- SHA512
  
  0c674aaf032315cfa37ec3fcc88e88b6c04beda1abe68366c13a8b36059878f72c3b5440e10c93c9f70fe60595e182bc55bd1e59bc2f04c25b37af17ecf0b25f
- SSDEEP
  
  49152:jkWk5cS7a+9XYaQvZehc4mTYJ78V9gyBn4cA2bLfmP/SA8N:rajJ8Z942KQV9hp4t6LfmP/SA8
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2