kutaki | 8077016cb0e6290e1132887f46763062fead26b3b8ad1ae845511d0e65670181 | Triage

Sharing

General

Target

HDFC_Copy.zip
Size

2.1MB
Sample

230907-m265jsgh5y
MD5

d815f131ec754c4e872358a0fc8f175a
SHA1

3d8298dda7cee2d318926cdce1f153bb704c26e4
SHA256

8077016cb0e6290e1132887f46763062fead26b3b8ad1ae845511d0e65670181
SHA512

e27db2e829597af7b3d9786e754902b98b0914ee8c93cbe3709a781ffe8410d22e1b5ebddbadca1581c3edacc3f36bb130f5cfb8041cdd88fa110441212c4df4
SSDEEP

49152:TxWDH+p96uNE4CAxWNb/NWUFouXoIjjac3mb/+m8VG:FAH+aSxWNbl3o2V3mb/+m8c

Score

10^/10

kutaki

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Targets

- Target
  
  HDFC_Copy.bat
- Size
  
  2.3MB
- MD5
  
  f69fee063def953ac8279c64841fee0b
- SHA1
  
  45d70ccdda374b1a88cb8f9bbef7e427a4fb8e77
- SHA256
  
  a9cd25eed4623fa4aff1724d5cfe10d8f289028d9e52251fe5ea0278773eb67b
- SHA512
  
  42144d3b3bd8245c85bebfd258f03b33a29ae53584d66d94f6c90c3967a38a49a81743df8c3284cff83fed736c0183f1d59a34cec6b3bf0bdb42fb053b2f2354
- SSDEEP
  
  49152:dkWk5cS7a+9XYaQiZehc4mTYJ78V9gyBn4cEfmP/SA8N:pajJBZ942KQV9hp4vfmP/SA8
Score

3^/10
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1