Overview

overview

10

Static

static

3

Loader.exe

windows10-2004-x64

10

Loader.exe

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Kapu.rar

  • Size

    1.9MB

  • MD5

    ba5e0c9d36e26c53cfa81677a61b64fb

  • SHA1

    2ed99fdd7461904c31904f1867fab42ce8e8492a

  • SHA256

    536e673034daa75a6067e4ed96ce8ac3c3a38fe8fd34e29598aa6a03f041b86f

  • SHA512

    3a5304aee10d44b17638c366618800627dd7b130ae82b0656a7b4ad1b3914dfb92d428c0fbcaef243ca926c098cf0b8021f987a76f447490be092b44e1eb0003

  • SSDEEP

    49152:JLBWC6uwwyMd74IAHLUdsRQlAmESJdhGz:xvvd4IA7RSPU

Score
3/10

Malware Config

Signatures

  • Unsigned PE 7 IoCs

    Checks for missing Authenticode signature.

Files

  • Kapu.rar
    .rar

    Password: 123

  • DirectX2D.dll
  • Environment.ini
    .xml
  • Loader.exe
    .exe windows:6 windows x86 arch:x86

    Password: 123

    3ccbd572e5c574aa059c8de8b80553b8


    Headers

    Imports

    Exports

    Sections

  • Other/Environment.ini
    .xml
  • Other/RestSharp.dll
    .dll windows:4 windows x86 arch:x86

    Password: 123

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Other/Sentlog.dll
    .dll windows:4 windows x86 arch:x86

    Password: 123

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Other/achevelog.dll
    .dll windows:4 windows x86 arch:x86

    Password: 123

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Other/d2patch.dll
    .dll windows:4 windows x86 arch:x86

    Password: 123

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Other/jascriptfortpatch.pdb
    .dll windows:4 windows x86 arch:x86

    Password: 123

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • Other/patch.dll
    .dll windows:6 windows x64 arch:x64

    Password: 123

    83b0fddc22f18606f3545454f033ed85


    Headers

    Imports

    Exports

    Sections

  • Sentlog.dll
    .dll windows:4 windows x86 arch:x86

    Password: 123

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections