bdaejec

General

Target

ab342a7d365d12f422c784f6a311084d28e83ecbcb666be03bec03b672c8e15b
Size

6.4MB
Sample

241105-v7dn7awdqj
MD5

fb9e7b846612d6d0ba891642be4afbb3
SHA1

27d5ce8c91080c55a855ef7f8521bc04b9139975
SHA256

ab342a7d365d12f422c784f6a311084d28e83ecbcb666be03bec03b672c8e15b
SHA512

70e21d5c11edcea5c7f48eab84586da0ac298a9af9604399f944d91254f759b46fd348dc405349130f7fb007a6b02826efdd2f7eb4df7ce11a8e1ff667b780a2
SSDEEP

98304:kNhH71FtPl3/JffT4ZC/7FCgQjACx//9Axjuo8vQGXpdTqU:spl/JX2ERCgAAA3iIYGXp4

Score

10^/10

Malware Config

Extracted

Family

bdaejec

C2

ddos.dnsnb8.net

Targets

- Target
  
  ab342a7d365d12f422c784f6a311084d28e83ecbcb666be03bec03b672c8e15b
- Size
  
  6.4MB
- MD5
  
  fb9e7b846612d6d0ba891642be4afbb3
- SHA1
  
  27d5ce8c91080c55a855ef7f8521bc04b9139975
- SHA256
  
  ab342a7d365d12f422c784f6a311084d28e83ecbcb666be03bec03b672c8e15b
- SHA512
  
  70e21d5c11edcea5c7f48eab84586da0ac298a9af9604399f944d91254f759b46fd348dc405349130f7fb007a6b02826efdd2f7eb4df7ce11a8e1ff667b780a2
- SSDEEP
  
  98304:kNhH71FtPl3/JffT4ZC/7FCgQjACx//9Axjuo8vQGXpdTqU:spl/JX2ERCgAAA3iIYGXp4
Score

10^/10

bdaejec aspackv2 backdoor discovery upx
- Bdaejec
  Bdaejec is a backdoor written in C++.
  backdoor bdaejec
- Bdaejec family
  bdaejec
- Detects Bdaejec Backdoor.
  Bdaejec is backdoor written in C++.
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1

T1012

System Information Discovery

2

T1082

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Bdaejec family

Detects Bdaejec Backdoor.

ASPack v2.12-2.42

Checks computer location settings

Executes dropped EXE

Loads dropped DLL

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2