kutaki | 36b7f4a622103d25a516973e8db7c4b1334465a9eb1ce4ba0ba08b05f6fcd229 | Triage

Sharing

General

Target

36b7f4a622103d25a516973e8db7c4b1334465a9eb1ce4ba0ba08b05f6fcd229.exe
Size

500KB
Sample

240604-sn5x8abc8s
MD5

6891bb0f887e42607ed8a657294f9ac5
SHA1

ee3f543d006363ba1c5d0415dbdff5073360be26
SHA256

36b7f4a622103d25a516973e8db7c4b1334465a9eb1ce4ba0ba08b05f6fcd229
SHA512

aef0bcbd0ed829fed7d19dfacc314984ddb8ecde8e6d04b55838d8e5912e4322e23b389f2e01749c19f1e4e55f0ff63299df5988f662c15413814b98f206ee36
SSDEEP

12288:d+Oa75wxpzAZu9/46A9jmP/uhu/yMS08CkntxYR:IR75tpfmP/UDMS08Ckn3

Score

10^/10

kutaki

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Targets

- Target
  
  36b7f4a622103d25a516973e8db7c4b1334465a9eb1ce4ba0ba08b05f6fcd229.exe
- Size
  
  500KB
- MD5
  
  6891bb0f887e42607ed8a657294f9ac5
- SHA1
  
  ee3f543d006363ba1c5d0415dbdff5073360be26
- SHA256
  
  36b7f4a622103d25a516973e8db7c4b1334465a9eb1ce4ba0ba08b05f6fcd229
- SHA512
  
  aef0bcbd0ed829fed7d19dfacc314984ddb8ecde8e6d04b55838d8e5912e4322e23b389f2e01749c19f1e4e55f0ff63299df5988f662c15413814b98f206ee36
- SSDEEP
  
  12288:d+Oa75wxpzAZu9/46A9jmP/uhu/yMS08CkntxYR:IR75tpfmP/UDMS08Ckn3
Score

3^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2