kutaki | 26dd613fb23b6d3a074f487d7566061be28fb4a177d316f950b282e8c3676d9a | Triage

Sharing

General

Target

be1e117af754d19e5ee30b440d9035ec_JaffaCakes118
Size

1000KB
Sample

240824-hy1fdayfjb
MD5

be1e117af754d19e5ee30b440d9035ec
SHA1

fba8c8bdc482955012103c604b7614f788fb523b
SHA256

26dd613fb23b6d3a074f487d7566061be28fb4a177d316f950b282e8c3676d9a
SHA512

18ed6b241bf5589fcb9554db7b12585285856243f2e4bba13e502607bdd1f8ad6fc8a4bdd866d755db76dfd23a9459ca69a419ce922081d22b49d75c8a50c05d
SSDEEP

12288:BIu9pb7QlUDrNMc3946A9jmP/uhu/yMS08CkntxYR0:auDbaurNt2fmP/UDMS08Ckn3J

Score

10^/10

kutaki discovery

Malware Config

Extracted

Family

kutaki

C2

http://sdaskmda.club/papa/love.php

http://terebinnahi.club/sec/kool.txt

Targets

- Target
  
  be1e117af754d19e5ee30b440d9035ec_JaffaCakes118
- Size
  
  1000KB
- MD5
  
  be1e117af754d19e5ee30b440d9035ec
- SHA1
  
  fba8c8bdc482955012103c604b7614f788fb523b
- SHA256
  
  26dd613fb23b6d3a074f487d7566061be28fb4a177d316f950b282e8c3676d9a
- SHA512
  
  18ed6b241bf5589fcb9554db7b12585285856243f2e4bba13e502607bdd1f8ad6fc8a4bdd866d755db76dfd23a9459ca69a419ce922081d22b49d75c8a50c05d
- SSDEEP
  
  12288:BIu9pb7QlUDrNMc3946A9jmP/uhu/yMS08CkntxYR0:auDbaurNt2fmP/UDMS08Ckn3J
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2