kutaki | 829063ecf2c3147d2d1f14b2902648c2527b2ce6fbfcdc64d6ce426f0bf2d275 | Triage

Sharing

General

Target

Challan.zip
Size

326KB
Sample

240506-kwtadsfb4y
MD5

c8c63f4b9c7e4c71db6a665d5f546c1a
SHA1

b27f180f59abd708880f984a4b26e78a1aecb0be
SHA256

829063ecf2c3147d2d1f14b2902648c2527b2ce6fbfcdc64d6ce426f0bf2d275
SHA512

feaa3cee34ca7c18f09686baeef35d600d7d65f786e402020ee7f6d765b8632c5046f7c0da0dc591edbb69b65861c53154b0610d6a08adf5d9de2ff75444d9b8
SSDEEP

6144:TbjiHMlrEMvsPr+/4GlA9JmHN/VCGY3Rw9l8bkAuPQUS0y+lQiHTovWfy3DYR3:9BsPC/46A9Jmt/wRuxoUS0mCkvPzYR3

Score

10^/10

kutaki

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Targets

- Target
  
  Challan.cmd
- Size
  
  472KB
- MD5
  
  6add675acc1977a20b91156a9bf45e19
- SHA1
  
  bd6af2df5e3f1390110a2adbffb99c05c398ccbf
- SHA256
  
  04a220a495f57cf0cfc48376ade49c969ed074e0011205247a6d71877912b0c7
- SHA512
  
  975695d0eb5006a28ca8df0d29d9456aaf20bec83cedca037c5acc88e2c72f44eb2bb1a1928e5495d1c844f5f39f4c71e9e42db477eea26e8da3de60cc071338
- SSDEEP
  
  12288:gLKvOdhkkIXS3y1+T46A9jmP/uhu/yMS08CkntxYR:B2dhkc3FkfmP/UDMS08Ckn3
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2