APT44 Report
Show in Graph
Image Description
Common Information
Type Value
UUID 447a6a39-94a7-4230-91b8-13f49cd470d3
Fingerprint 717ab423f41e4822472ae947df6a4d656698e8c5c745dd823c0a5496fde144a0
Analysis status DONE
Considered CTI value 2
Text language
Published April 29, 2024, 8:53 a.m.
Added to db May 19, 2024, 1:38 p.m.
Last updated Aug. 31, 2024, 7:30 a.m.
Headline APT44 Report
Title APT44 Report
Detected Hints/Tags/Attributes 99/3/23
Source URLs
Redirection Url
Details Source https://threatmon.io/storage/understanding-the-kapeka-backdoor-detailed-analysis-by-apt44.pdf
URL Provider
Details Provider Source level domain
Details threatmon.io threatmon.io
Attributes
Details Type #Events CTI Value
Details File 15 
dropper.exe
Details File 1018 
rundll32.exe
Details File 2125 
cmd.exe
Details File 1 
kapeka.dll
Details md5 1 
50b5582904fe34451f5cb2362e11cb24
Details md5 1 
5294aaf2ff80547172ebb9e0bcb52e0f
Details sha1 2 
80fb042b4a563efe058a71a647ea949148a56c7c
Details sha1 2 
6c3441b5a4d3d39e9695d176b0e83a2c55fe5b4e
Details IPv4 2 
185.38.150.8
Details IPv4 1 
196.245.156.154
Details IPv4 1 
193.189.100.203
Details IPv4 1 
5.45.75.45
Details IPv4 1 
194.61.121.211
Details MITRE ATT&CK Techniques 333 
T1059.003
Details MITRE ATT&CK Techniques 380 
T1547.001
Details MITRE ATT&CK Techniques 1006 
T1082
Details MITRE ATT&CK Techniques 550 
T1112
Details MITRE ATT&CK Techniques 119 
T1218.011
Details MITRE ATT&CK Techniques 348 
T1036
Details MITRE ATT&CK Techniques 442 
T1071.001
Details Threat Actor Identifier - APT 20 
APT44
Details Url 1 
https://185.38.150.8:443/star/key
Details Url 1 
https://194.61.121.211/appliicaition