kutaki | 2cb398ecd2ee5c6760a8fb2c9c70008e86ab077af14e1c417d064dc33e65ac74 | Triage

Sharing

General

Target

DOM-04-INV-1616.bat
Size

2.4MB
Sample

240311-k4szlagc8z
MD5

c39e73033267ae166eaa5932507ef95b
SHA1

668cb060f6cdf86175c2b8d56198b5a4b2581d18
SHA256

2cb398ecd2ee5c6760a8fb2c9c70008e86ab077af14e1c417d064dc33e65ac74
SHA512

b3483ea1c12380676cef1a557aa67028155844de94fc49791a81e2a288d26739f4a6f9ad48942e133f452b7e5a296ff267c931a1faef9e73c11c2e9d7b421fca
SSDEEP

49152:cZehc4mTYJ78V9gyBn4cNkWk5cS7a+9XYaQyVRfmP/SA8N:cZ942KQV9hp4sajJvfmP/SA8

Score

10^/10

kutaki

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Targets

- Target
  
  DOM-04-INV-1616.bat
- Size
  
  2.4MB
- MD5
  
  c39e73033267ae166eaa5932507ef95b
- SHA1
  
  668cb060f6cdf86175c2b8d56198b5a4b2581d18
- SHA256
  
  2cb398ecd2ee5c6760a8fb2c9c70008e86ab077af14e1c417d064dc33e65ac74
- SHA512
  
  b3483ea1c12380676cef1a557aa67028155844de94fc49791a81e2a288d26739f4a6f9ad48942e133f452b7e5a296ff267c931a1faef9e73c11c2e9d7b421fca
- SSDEEP
  
  49152:cZehc4mTYJ78V9gyBn4cNkWk5cS7a+9XYaQyVRfmP/SA8N:cZ942KQV9hp4sajJvfmP/SA8
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2