General

  • Target

    ed04df376e127f7c735e8f81a73a8c74294daad91bc3231d61034f19f1d4e9a4_JC.zip

  • Size

    2.2MB

  • MD5

    a777e2155c120326263fad7434389a6b

  • SHA1

    94a22a524a1dfd01d398ff8568e7dbcefb59cb33

  • SHA256

    ed04df376e127f7c735e8f81a73a8c74294daad91bc3231d61034f19f1d4e9a4

  • SHA512

    bb37dddf0b7453dd569c8dd486c64bdfd2535a349bc4622dc9824a477b8541a772f876bd47096f719bbd0d8ecd577f2c3bb219cf9c6d0236015bc4275ade6477

  • SSDEEP

    49152:EHAPSctUWtpLyymwzLb3UWd91K6AVlSKHgCxIq3jpBq3JEl/ym8V/:EHAXtUW3wMjn1KpVgKbxkJEl/ym8N

Score
10/10

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Signatures

  • Kutaki family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ed04df376e127f7c735e8f81a73a8c74294daad91bc3231d61034f19f1d4e9a4_JC.zip
    .zip
  • HDFC_0714.bat
    .exe windows:4 windows x86

    182951115339db302e46422fbd2db610


    Headers

    Imports

    Sections