kutaki | 829063ecf2c3147d2d1f14b2902648c2527b2ce6fbfcdc64d6ce426f0bf2d275 | Triage

Sharing

General

Target

Challan.zip
Size

326KB
Sample

240506-kwtadsfb4y
MD5

c8c63f4b9c7e4c71db6a665d5f546c1a
SHA1

b27f180f59abd708880f984a4b26e78a1aecb0be
SHA256

829063ecf2c3147d2d1f14b2902648c2527b2ce6fbfcdc64d6ce426f0bf2d275
SHA512

feaa3cee34ca7c18f09686baeef35d600d7d65f786e402020ee7f6d765b8632c5046f7c0da0dc591edbb69b65861c53154b0610d6a08adf5d9de2ff75444d9b8
SSDEEP

6144:TbjiHMlrEMvsPr+/4GlA9JmHN/VCGY3Rw9l8bkAuPQUS0y+lQiHTovWfy3DYR3:9BsPC/46A9Jmt/wRuxoUS0mCkvPzYR3

Score

10^/10

kutaki

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Targets

- Target
  
  Challan.cmd
- Size
  
  472KB
- MD5
  
  6add675acc1977a20b91156a9bf45e19
- SHA1
  
  bd6af2df5e3f1390110a2adbffb99c05c398ccbf
- SHA256
  
  04a220a495f57cf0cfc48376ade49c969ed074e0011205247a6d71877912b0c7
- SHA512
  
  975695d0eb5006a28ca8df0d29d9456aaf20bec83cedca037c5acc88e2c72f44eb2bb1a1928e5495d1c844f5f39f4c71e9e42db477eea26e8da3de60cc071338
- SSDEEP
  
  12288:gLKvOdhkkIXS3y1+T46A9jmP/uhu/yMS08CkntxYR:B2dhkc3FkfmP/UDMS08Ckn3
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2