General

  • Target

    c4035416b504d5cf34bc122433144d5392120f54480db4cd68188d98e8e7d1bb

  • Size

    536KB

  • MD5

    55aa98de6c51d540397b96f9815f7505

  • SHA1

    012bccad9c9b58904ecb2bc6bedda935c27a1df5

  • SHA256

    c4035416b504d5cf34bc122433144d5392120f54480db4cd68188d98e8e7d1bb

  • SHA512

    1b97dd718993a4bff76ebba5ef7a25a16417adead3747e1f51d36b3a5f4cb16888bb1e2350023468519d594b5d744c591cca7575a72a3ce261138eae0bb41854

  • SSDEEP

    12288:McUplyaw22FrGk46A9jmP/uhu/yMS08CkntxYR:MBplyaw2VXfmP/UDMS08Ckn3

Score
10/10

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Signatures

  • Kutaki family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • c4035416b504d5cf34bc122433144d5392120f54480db4cd68188d98e8e7d1bb
    .exe windows:4 windows x86 arch:x86

    70e6405c911e37e751e66490fe6b9801


    Headers

    Imports

    Sections