kutaki | 36b7f4a622103d25a516973e8db7c4b1334465a9eb1ce4ba0ba08b05f6fcd229 | Triage

Sharing

General

Target

36b7f4a622103d25a516973e8db7c4b1334465a9eb1ce4ba0ba08b05f6fcd229.exe
Size

500KB
Sample

240604-sn5x8abc8s
MD5

6891bb0f887e42607ed8a657294f9ac5
SHA1

ee3f543d006363ba1c5d0415dbdff5073360be26
SHA256

36b7f4a622103d25a516973e8db7c4b1334465a9eb1ce4ba0ba08b05f6fcd229
SHA512

aef0bcbd0ed829fed7d19dfacc314984ddb8ecde8e6d04b55838d8e5912e4322e23b389f2e01749c19f1e4e55f0ff63299df5988f662c15413814b98f206ee36
SSDEEP

12288:d+Oa75wxpzAZu9/46A9jmP/uhu/yMS08CkntxYR:IR75tpfmP/UDMS08Ckn3

Score

10^/10

kutaki

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Targets

- Target
  
  36b7f4a622103d25a516973e8db7c4b1334465a9eb1ce4ba0ba08b05f6fcd229.exe
- Size
  
  500KB
- MD5
  
  6891bb0f887e42607ed8a657294f9ac5
- SHA1
  
  ee3f543d006363ba1c5d0415dbdff5073360be26
- SHA256
  
  36b7f4a622103d25a516973e8db7c4b1334465a9eb1ce4ba0ba08b05f6fcd229
- SHA512
  
  aef0bcbd0ed829fed7d19dfacc314984ddb8ecde8e6d04b55838d8e5912e4322e23b389f2e01749c19f1e4e55f0ff63299df5988f662c15413814b98f206ee36
- SSDEEP
  
  12288:d+Oa75wxpzAZu9/46A9jmP/uhu/yMS08CkntxYR:IR75tpfmP/UDMS08Ckn3
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2