kutaki | ed04df376e127f7c735e8f81a73a8c74294daad91bc3231d61034f19f1d4e9a4 | Triage

Sharing

General

Target

ed04df376e127f7c735e8f81a73a8c74294daad91bc3231d61034f19f1d4e9a4_JC.zip
Size

2.2MB
Sample

230915-qygl9scb7v
MD5

a777e2155c120326263fad7434389a6b
SHA1

94a22a524a1dfd01d398ff8568e7dbcefb59cb33
SHA256

ed04df376e127f7c735e8f81a73a8c74294daad91bc3231d61034f19f1d4e9a4
SHA512

bb37dddf0b7453dd569c8dd486c64bdfd2535a349bc4622dc9824a477b8541a772f876bd47096f719bbd0d8ecd577f2c3bb219cf9c6d0236015bc4275ade6477
SSDEEP

49152:EHAPSctUWtpLyymwzLb3UWd91K6AVlSKHgCxIq3jpBq3JEl/ym8V/:EHAXtUW3wMjn1KpVgKbxkJEl/ym8N

Score

10^/10

kutaki

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Targets

- Target
  
  HDFC_0714.bat
- Size
  
  2.8MB
- MD5
  
  13b1d6257b39fc71cc97e16d98d5a9f8
- SHA1
  
  31ee10c6a4e7d919dcb8d4333a9516376365792f
- SHA256
  
  104bdcceeb0a98bbeab3ae52100a5bd31a4fe7fa2b832ce36aa08c735be83227
- SHA512
  
  a9826ca280f296ee33c5d3a822eba7c3f5bdd0f0f8e5390b83e6ebb752ad84b616a2b9b25af8ce09898bbec0227113e27dc8fc862852132c71fa498589a51ab3
- SSDEEP
  
  49152:daozWskWk5cS7a+9XYaQ8Zehc4mTYJ78V9gyBn4cYfmP/SA8NEW:fzWsajJPZ942KQV9hp4XfmP/SA82W
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2