kutaki | 891d66de936462bb812e8786c9f54d91c057c5e100f1ab7e68c42c0a61f8146f | Triage

Sharing

General

Target

891d66de936462bb812e8786c9f54d91c057c5e100f1ab7e68c42c0a61f8146f
Size

353KB
Sample

240417-rvaj8aca59
MD5

4bc8b69681ef19a4051da2f1b0971bc9
SHA1

bd07ef4e1591d94292dad4942d11d8823a7559bc
SHA256

891d66de936462bb812e8786c9f54d91c057c5e100f1ab7e68c42c0a61f8146f
SHA512

03093bd809b7bdbb913c0c0d84c3f70559d692f16a1d688fbfd60fc83158215bd723f1d496a8b8ce7ac514e8af80244f7944e36d7855a231e7c460ae8151d96e
SSDEEP

6144:XUyPBtQjeGY+2a52BMJ1i60YkXntehz4ffZGSNr4BuFR0AZGcEDljzQRDC/4:XUXeGY+2a5mMJ1i60Y14ZZr2MZGDx54

Score

10^/10

kutaki

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Targets

- Target
  
  c4035416b504d5cf34bc122433144d5392120f54480db4cd68188d98e8e7d1bb.exe
- Size
  
  536KB
- MD5
  
  55aa98de6c51d540397b96f9815f7505
- SHA1
  
  012bccad9c9b58904ecb2bc6bedda935c27a1df5
- SHA256
  
  c4035416b504d5cf34bc122433144d5392120f54480db4cd68188d98e8e7d1bb
- SHA512
  
  1b97dd718993a4bff76ebba5ef7a25a16417adead3747e1f51d36b3a5f4cb16888bb1e2350023468519d594b5d744c591cca7575a72a3ce261138eae0bb41854
- SSDEEP
  
  12288:McUplyaw22FrGk46A9jmP/uhu/yMS08CkntxYR:MBplyaw2VXfmP/UDMS08Ckn3
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2