kutaki | f8f7c10e124f7fb88e445fb8c395190e06149dea3d68ebe38572efc21d60c428 | Triage

Sharing

General

Target

NEFT_Debit.zip
Size

2.3MB
Sample

231102-fk8hqafh9v
MD5

58bcf6d5459be104623e329ff6695051
SHA1

9bc375405d89fda775c2056feb6ed9987f6f94b4
SHA256

f8f7c10e124f7fb88e445fb8c395190e06149dea3d68ebe38572efc21d60c428
SHA512

6e5e45abda94aaf300f831caaf66b1a4967d6efbb4b006f04ed00c24b66f34a7492e62c8c7edfe7ff30fe6fc6dd437de29d800c2c2d8bb327f9377866e834b43
SSDEEP

49152:0kIzri/YsXTL1NnU0CC+xq+nm5Mnrcq082uqCjmx/uO8v0Nmf/W4aNJ:05zrHQf/ntP+oMrR08iCjmx/uO8MNmfW

Score

10^/10

kutaki

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Targets

- Target
  
  NEFT_Debit.bat
- Size
  
  2.6MB
- MD5
  
  c9c287de179691fd690a32cd5faad708
- SHA1
  
  6e093998c4cd0843b5b3786b14f4a5c92901d9e8
- SHA256
  
  f8b8d8a92d0fe133cf1678885042a6c1dab9ccf3b8bacb4bc95c3ad4c2851d28
- SHA512
  
  5655317afdde0d1cb5380cfa6f977727274360cf65ee387058962b62f4e5f10df1f3d0f953128d9ad0838bb8b44730e149c45aa645b42ca5b00a83927e42ffa0
- SSDEEP
  
  49152:pkWk5cS7a+9XYaQHZehc4mTYJ78V9gyBn4cnfmP/SA8NLfmP/SA8N:1ajJYZ942KQV9hp4AfmP/SA8dfmP/SA8
Score

3^/10
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1