kutaki | 464f804c740b25c3bcff17535139009cd178237e638f278beb8489cad222835b | Triage

Sharing

General

Target

a1809e923de6cae635be84aa94afa7b7.bin
Size

2.1MB
Sample

231102-c2964afd2w
MD5

55a30bb63467702eb7a148adf37d2847
SHA1

88bbd1a61851c5cfb9fd77a15c0e051a8e948205
SHA256

464f804c740b25c3bcff17535139009cd178237e638f278beb8489cad222835b
SHA512

564bb30aa9f6550a0691dd37b520c42743536c15597a2767fbd2a09f5e055a69f59cd7060d378f2ea0bbeac30d02e652eb7132e11c3c355ef7be6eca468ba36f
SSDEEP

49152:p7PsrFyKHvZHiC2bWRVx8jFrGyjrV6wCxaYZ+oikQEi0yyp4gLASsqH6Bt:p7PEyKPZHgM7W7TCxBlQD7gUSsZBt

Score

10^/10

kutaki

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Targets

- Target
  
  INF_NEFT_Debit.bat
- Size
  
  2.3MB
- MD5
  
  15dd21aa387a33edb3cc7ab6caf90664
- SHA1
  
  5bc2c764c064f8c32217bff0938b1e79a0e486d6
- SHA256
  
  5963db9ee022b1331aa48c1c8c3b9b75bafb2f0297dced1928e88bdea3f790c8
- SHA512
  
  efc58f93bf628b98454fd22f6c2f540519829f752cd62b3d05f0695593a6ceca16f8261a8a61966518630f8a7110ba79d6240db0aeca4a445f27b7bbe18d8dd8
- SSDEEP
  
  49152:AWkWk5cS7a+9XYaQlZehc4mTYJ78V9gyBn4cSfmP/SA8N:A6ajJiZ942KQV9hp4xfmP/SA8
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2