kutaki | f46ac581f22cc597480f20b3615fa164722338004846eb446f05de8db62a0321 | Triage

Sharing

General

Target

d417484674d484761d1c45e4ffea735e.zip
Size

2.1MB
Sample

240118-gm1rbsdhar
MD5

d417484674d484761d1c45e4ffea735e
SHA1

d4afb397751a815ab9622cbe607ee3fb1ed0d4d6
SHA256

f46ac581f22cc597480f20b3615fa164722338004846eb446f05de8db62a0321
SHA512

80c7ec748971581afa2177efa46cdca4c6ace0ed76fe94b97e7570c10d88e28e2ee1d2f8fe0c5c1988177b950d94f6182d941538c802cf2c43ca8986b78c1ac3
SSDEEP

49152:SFGnFQ5TrwkKUGTDnv8gLrR77P3kwbrG1bKdRkfmz/oE8rL:SFGnFQV8v8OV0rKrkfmz/oE8X

Score

10^/10

kutaki

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Targets

- Target
  
  INF_Note.bat
- Size
  
  2.4MB
- MD5
  
  854c9ba84f8ebe6cd8a5dc006b5380e6
- SHA1
  
  eb58139157e3802768f2b824225cde2ceaae02b4
- SHA256
  
  f438cf72e19388bb5d496e91c188d62ae52aac834d26cb1bcbde0ba6eb311f23
- SHA512
  
  f488891e7baaa0a9c266de052e0e7c5260969e7436c61ad1c71822db96f44a4d09f17e9152fafdfa889ec2cedd0148730a1f9d2f2c78886ff33c11eb060c8660
- SSDEEP
  
  49152:nkWk5cS7a+9XYaQ+Zehc4mTYJ78V9gyBn4c8KfmP/SA8N:fajJdZ942KQV9hp4EfmP/SA8
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2