kutaki | 891d66de936462bb812e8786c9f54d91c057c5e100f1ab7e68c42c0a61f8146f | Triage

Sharing

General

Target

891d66de936462bb812e8786c9f54d91c057c5e100f1ab7e68c42c0a61f8146f
Size

353KB
Sample

240417-rvaj8aca59
MD5

4bc8b69681ef19a4051da2f1b0971bc9
SHA1

bd07ef4e1591d94292dad4942d11d8823a7559bc
SHA256

891d66de936462bb812e8786c9f54d91c057c5e100f1ab7e68c42c0a61f8146f
SHA512

03093bd809b7bdbb913c0c0d84c3f70559d692f16a1d688fbfd60fc83158215bd723f1d496a8b8ce7ac514e8af80244f7944e36d7855a231e7c460ae8151d96e
SSDEEP

6144:XUyPBtQjeGY+2a52BMJ1i60YkXntehz4ffZGSNr4BuFR0AZGcEDljzQRDC/4:XUXeGY+2a5mMJ1i60Y14ZZr2MZGDx54

Score

10^/10

kutaki

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Targets

- Target
  
  c4035416b504d5cf34bc122433144d5392120f54480db4cd68188d98e8e7d1bb.exe
- Size
  
  536KB
- MD5
  
  55aa98de6c51d540397b96f9815f7505
- SHA1
  
  012bccad9c9b58904ecb2bc6bedda935c27a1df5
- SHA256
  
  c4035416b504d5cf34bc122433144d5392120f54480db4cd68188d98e8e7d1bb
- SHA512
  
  1b97dd718993a4bff76ebba5ef7a25a16417adead3747e1f51d36b3a5f4cb16888bb1e2350023468519d594b5d744c591cca7575a72a3ce261138eae0bb41854
- SSDEEP
  
  12288:McUplyaw22FrGk46A9jmP/uhu/yMS08CkntxYR:MBplyaw2VXfmP/UDMS08Ckn3
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2