bdaejec

General

Target

fd047120aea0116a68e040cb5f58e570c4b96ec77003f31bc091d15852ba1319N
Size

1016KB
Sample

241025-1mj85avfnh
MD5

9ac6c7a0e090b91c0cea44e84cab9e00
SHA1

b2bf0da8a0a4d6790740dfc2961d08d4dcd50e5d
SHA256

fd047120aea0116a68e040cb5f58e570c4b96ec77003f31bc091d15852ba1319
SHA512

0e28b498fa9d94a9e21dfdeecc5dd82cd61ef622531570db82360a9da6f93d2c66d0fe1c7c4ca0f0fee4c3959d1f7c4e02001adde5063d291b7d44ce180b714b
SSDEEP

12288:Mm5u/b7VfkqqKUVwPjmCzJOk64qGsEswnnziOikEKwBdMBcSTA9/LZ8sEpqx0tEq:Mm54VfkqbzJOL4qHlZWvYLmrpqzq

Score

10^/10

Malware Config

Extracted

Family

bdaejec

C2

ddos.dnsnb8.net

Targets

- Target
  
  fd047120aea0116a68e040cb5f58e570c4b96ec77003f31bc091d15852ba1319N
- Size
  
  1016KB
- MD5
  
  9ac6c7a0e090b91c0cea44e84cab9e00
- SHA1
  
  b2bf0da8a0a4d6790740dfc2961d08d4dcd50e5d
- SHA256
  
  fd047120aea0116a68e040cb5f58e570c4b96ec77003f31bc091d15852ba1319
- SHA512
  
  0e28b498fa9d94a9e21dfdeecc5dd82cd61ef622531570db82360a9da6f93d2c66d0fe1c7c4ca0f0fee4c3959d1f7c4e02001adde5063d291b7d44ce180b714b
- SSDEEP
  
  12288:Mm5u/b7VfkqqKUVwPjmCzJOk64qGsEswnnziOikEKwBdMBcSTA9/LZ8sEpqx0tEq:Mm54VfkqbzJOL4qHlZWvYLmrpqzq
Score

10^/10

bdaejec aspackv2 backdoor discovery
- Bdaejec
  Bdaejec is a backdoor written in C++.
  backdoor bdaejec
- Bdaejec family
  bdaejec
- Detects Bdaejec Backdoor.
  Bdaejec is backdoor written in C++.
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1

T1012

System Information Discovery

2

T1082

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Bdaejec family

Detects Bdaejec Backdoor.

ASPack v2.12-2.42

Checks computer location settings

Executes dropped EXE

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2