kutaki | f767ad8f6f0d02bfabfa4485d23d6696914187eb8820cb87c7a3894d372c6c48 | Triage

Sharing

General

Target

396a85ca34aeb6eb24494d8ad621f240N
Size

520KB
Sample

240911-fef7aatbnp
MD5

396a85ca34aeb6eb24494d8ad621f240
SHA1

ef99c5241e0c03ceb151a00349d73fdea33241ee
SHA256

f767ad8f6f0d02bfabfa4485d23d6696914187eb8820cb87c7a3894d372c6c48
SHA512

c6a1f98e9104d1ea0e74585667cd8cad60a6749050b4dc3e7ece8f96e014f31d18c8df73abb9506491e6475f2167d0598aa9fdc3323aa69df7ea745108e3674b
SSDEEP

12288:P3fJk4x0duakqD46A9jmP/uhu/yMS08CkntxYR:/f/x0ZUfmP/UDMS08Ckn3

Score

10^/10

kutaki discovery

Malware Config

Extracted

Family

kutaki

C2

http://treysbeatend.com/laptop/squared.php

Targets

- Target
  
  396a85ca34aeb6eb24494d8ad621f240N
- Size
  
  520KB
- MD5
  
  396a85ca34aeb6eb24494d8ad621f240
- SHA1
  
  ef99c5241e0c03ceb151a00349d73fdea33241ee
- SHA256
  
  f767ad8f6f0d02bfabfa4485d23d6696914187eb8820cb87c7a3894d372c6c48
- SHA512
  
  c6a1f98e9104d1ea0e74585667cd8cad60a6749050b4dc3e7ece8f96e014f31d18c8df73abb9506491e6475f2167d0598aa9fdc3323aa69df7ea745108e3674b
- SSDEEP
  
  12288:P3fJk4x0duakqD46A9jmP/uhu/yMS08CkntxYR:/f/x0ZUfmP/UDMS08Ckn3
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2