kutaki | 464f804c740b25c3bcff17535139009cd178237e638f278beb8489cad222835b | Triage

Sharing

General

Target

a1809e923de6cae635be84aa94afa7b7.bin
Size

2.1MB
Sample

231102-c2964afd2w
MD5

55a30bb63467702eb7a148adf37d2847
SHA1

88bbd1a61851c5cfb9fd77a15c0e051a8e948205
SHA256

464f804c740b25c3bcff17535139009cd178237e638f278beb8489cad222835b
SHA512

564bb30aa9f6550a0691dd37b520c42743536c15597a2767fbd2a09f5e055a69f59cd7060d378f2ea0bbeac30d02e652eb7132e11c3c355ef7be6eca468ba36f
SSDEEP

49152:p7PsrFyKHvZHiC2bWRVx8jFrGyjrV6wCxaYZ+oikQEi0yyp4gLASsqH6Bt:p7PEyKPZHgM7W7TCxBlQD7gUSsZBt

Score

10^/10

kutaki

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Targets

- Target
  
  INF_NEFT_Debit.bat
- Size
  
  2.3MB
- MD5
  
  15dd21aa387a33edb3cc7ab6caf90664
- SHA1
  
  5bc2c764c064f8c32217bff0938b1e79a0e486d6
- SHA256
  
  5963db9ee022b1331aa48c1c8c3b9b75bafb2f0297dced1928e88bdea3f790c8
- SHA512
  
  efc58f93bf628b98454fd22f6c2f540519829f752cd62b3d05f0695593a6ceca16f8261a8a61966518630f8a7110ba79d6240db0aeca4a445f27b7bbe18d8dd8
- SSDEEP
  
  49152:AWkWk5cS7a+9XYaQlZehc4mTYJ78V9gyBn4cSfmP/SA8N:A6ajJiZ942KQV9hp4xfmP/SA8
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2