Loader Insight Agency - We Emulate, They Capitulate!

Payload Details

First Seen	2026-01-06 (Login for timestamps)
Last Seen	2026-02-20
SHA256	6de90e51937f07fd6650703948585b1a0e692797d4648d927be3cdae0d2d7871
Filetype	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows, 3 sections
Size	436,736 bytes
Distributed By	Vidar (Login)
Countries	Login for country information
UnpacMe ID	8ba009ce-0506-49ba-be2b-b894ca2da3bc
UnpacMe Detections	TYPE:DOWNLOADERMALWARE:AmadeyRULE:AmadeyCONFIG:Amadey
Sandbox Detections	AmadeyGCleaner
Malcat Kesakode	Unknown
Download	Login

Monitored Sandbox Execution

Login required

Non-Monitored Sandbox Execution

Login required

Tasks of Origin (74)

First Seen (UTC)	Last Seen (UTC)	Family	Botnet	Task Data
2026-02-18	2026-02-18	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-12	2026-02-12	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-10	2026-02-10	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-10	2026-02-18	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-08	2026-02-11	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-08	2026-02-08	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-07	2026-02-07	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-07	2026-02-07	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-07	2026-02-07	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-06	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-06	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-06	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-06	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-06	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-06	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-06	2026-02-06	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-04	2026-02-04	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-04	2026-02-07	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-04	2026-02-04	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-04	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-04	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-04	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-04	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-04	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-04	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-03	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-03	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-03	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-03	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-03	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-03	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-03	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-03	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-03	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-03	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-03	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-03	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-02-01	2026-02-01	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-31	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-31	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-31	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-31	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-31	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-31	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-31	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-31	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-31	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-31	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-31	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-31	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-31	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-31	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-31	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-31	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-31	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-31	2026-02-26	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-06	2026-01-08	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-06	2026-01-08	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-06	2026-01-08	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-06	2026-01-08	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-06	2026-01-08	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-06	2026-01-08	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-06	2026-01-08	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-06	2026-01-08	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-06	2026-01-08	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-06	2026-01-08	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-06	2026-01-08	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-06	2026-01-08	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-06	2026-01-08	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-06	2026-01-08	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-06	2026-01-08	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-06	2026-01-08	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-06	2026-01-08	vidar	Login	http://130.12.180.43/amka/random.exe
2026-01-06	2026-01-08	vidar	Login	http://130.12.180.43/amka/random.exe