home

kar.sys

karapkt

idappcom Ltd

It runs as a Windows kernel mode device driver named “idappcom Packet Driver (KAR)”.
Publisher:
idappcom Ltd.  (signed by idappcom Ltd)

Product:
karapkt

Description:
kar.sys (NT5/6 x86) Kernel Driver

Version:
4.1.0.2001

MD5:
85e6ba2d58979e6baf18a639cbbbaf17

SHA-1:
2fd31075c5aaab5bd9709eda5412b0f1cef12cb3

Scanner detections:
0 / 68

Status:
Clean (as of last analysis)

Analysis date:
7/13/2025 8:35:17 PM UTC  (today)

File size:
34.7 KB (35,576 bytes)

Product version:
4.1.0.2001

Copyright:
Copyright © 2009-2011 idappcom Ltd.

Original file name:
kar.sys

File type:
Driver (Win32 SYS)

Common path:
C:\Windows\System32\drivers\kar.sys

Digital Signature
Signed by:
idappcom Ltd

Authority:
VeriSign, Inc.

Valid from:
3/15/2011 1:00:00 AM

Valid to:
3/15/2012 12:59:59 AM

Subject:
CN=idappcom Ltd, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=idappcom Ltd, L=teston, S=kent, C=GB

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
66C44C7971AF3B37AE3AF5A941F2FF56

File PE Metadata
Compilation timestamp:
5/16/2011 5:20:58 PM

OS version:
6.0

OS bitness:
Win32

Subsystem:
Native (none required)

Linker version:
8.0

CTPH (ssdeep):
768:SzHv4h7+mIp4eD6etfA98rsRN8DkF4giUsdHWQHPEjK0sLLmLu:SzHC7+mIb2etBrsRlsMjQ+q

Entry address:
0x8005

Entry point:
8B, FF, 55, 8B, EC, A1, A8, 74, 01, 00, 85, C0, B9, 4E, E6, 40, BB, 74, 04, 3B, C1, 75, 1A, A1, B4, 60, 01, 00, 8B, 00, 35, A8, 74, 01, 00, A3, A8, 74, 01, 00, 75, 07, 8B, C1, A3, A8, 74, 01, 00, F7, D0, A3, AC, 74, 01, 00, 5D, E9, A9, 9F, FF, FF, CC, EC, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 64, 85, 00, 00, 58, 60, 00, 00, 94, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, DE, 85, 00, 00, 00, 60, 00, 00, AC, 80, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 24, 87, 00, 00, 18, 60, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Code size:
22 KB (22,528 bytes)

Driver
Display name:
idappcom Packet Driver (KAR)

Service name:
KAR

Type:
Kernel device driver (KernelDriver)


Scan kar.sys - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.