kutaki | e101746b116f24163e6f8c4b280eb3c424c6ac913a93b91f1afefda941f78644 | Triage

Sharing

General

Target

RENEWAL.zip
Size

364KB
Sample

240624-kmeqmswhqj
MD5

cdb85d64a6df5f48477931ec3c2df14e
SHA1

72212e655058222424b98960edc45d349568ce33
SHA256

e101746b116f24163e6f8c4b280eb3c424c6ac913a93b91f1afefda941f78644
SHA512

6d6fe8b855eaf6c3ea9e4f5c5bd5fe9452d138a786e4d75ca8ba354e36f7d4a4989c5667e538185fd80ee6be469970fde14f7fe3f44efadad6db8ea47c7be8c9
SSDEEP

6144:Z+9PPhifSEYZ3/qj+cRGkB1M4GBA9juHF/VCSY3hw5lM3kiuzQMSiy+lqUHTonwz:Z+ufKeQko40A9jul/qhwdUMSi8Ukn7ni

Score

10^/10

kutaki

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

http://terebinnahicc.club/sec/kool.txt

Targets

- Target
  
  RENEWAL.zip
- Size
  
  364KB
- MD5
  
  cdb85d64a6df5f48477931ec3c2df14e
- SHA1
  
  72212e655058222424b98960edc45d349568ce33
- SHA256
  
  e101746b116f24163e6f8c4b280eb3c424c6ac913a93b91f1afefda941f78644
- SHA512
  
  6d6fe8b855eaf6c3ea9e4f5c5bd5fe9452d138a786e4d75ca8ba354e36f7d4a4989c5667e538185fd80ee6be469970fde14f7fe3f44efadad6db8ea47c7be8c9
- SSDEEP
  
  6144:Z+9PPhifSEYZ3/qj+cRGkB1M4GBA9juHF/VCSY3hw5lM3kiuzQMSiy+lqUHTonwz:Z+ufKeQko40A9jul/qhwdUMSi8Ukn7ni
Score

1^/10
behavioral1 behavioral2
- Target
  
  RENEWAL.zip
- Size
  
  364KB
- MD5
  
  c7698c3932e82e3808e3e459e0516924
- SHA1
  
  c46b357304d300e3e0a7605d5e7135a410d13717
- SHA256
  
  ab194b77a46cf0c3dc363f0242db7d2ae7a49d4f718732e65377cfc3dcee37ee
- SHA512
  
  1b3e644d7662264c5e3fccd425eccd2045096b04267cc8b5402817625a793de738c871ece074ccf386177db93e3c7595cf4368c57e09eb23d1c5fd6b6a8c9d2d
- SSDEEP
  
  6144:R+9PPhifSEYZ3/qj+cRGkB1M4GBA9juHF/VCSY3hw5lM3kiuzQMSiy+lqUHTonwK:R+ufKeQko40A9jul/qhwdUMSi8Ukn7n9
Score

1^/10
behavioral3 behavioral4
- Target
  
  RENEWAL.cmd
- Size
  
  600KB
- MD5
  
  4e4cc60c61385734a7659d23bd1ed53e
- SHA1
  
  58c625f04d82a54daa5a8387b55adfee7d4c11e2
- SHA256
  
  f376040216d0d216f8b80b501795078c504c20988c3c9a5a07a09bca8909b9c5
- SHA512
  
  650da44440378ac41dae83b99f10eb79d9bcf2268507093324eda48542d213b80df5721f5ed4a77e7f56dd39491d2b65a5adb7f04dc56b6f747e71bd4f3ff678
- SSDEEP
  
  12288:WpO6kqA3lTIbgWX3oxIfT3PO7USTf46A9jmP/uhu/yMS08CkntxYR:W46kqA3lTIbvX3oxIfT7STQfmP/UDMSz
Score

3^/10
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6