bdaejec

General

Target

d29141d2922bd488d3fe3d4697ab0b6524cdfbc996be957027bdba63342a52be
Size

124KB
Sample

241122-e75jxazrap
MD5

63a7073302793e62fc5549dd6b4c01cb
SHA1

4669bbabb0a1c88ab43562a320ca7359ed823a30
SHA256

d29141d2922bd488d3fe3d4697ab0b6524cdfbc996be957027bdba63342a52be
SHA512

df398dfd3a9b4819aa2df21c4deb54752abed8e47e0921cf94c477f8277045b5322ca6cfee569a1767e341c041affd40f4300911f3b57a199bec9dda0b12649a
SSDEEP

1536:qSZ2lI7gFvjvQCfWjO/3SjeEbZgkBNFj/AOwZgkBNFj/AOnjfGCq2iW7z:zZ2a7mknO/36vmkXFymkXFdjGCH

Score

10^/10

Malware Config

Extracted

Family

bdaejec

C2

ddos.dnsnb8.net

Targets

- Target
  
  d29141d2922bd488d3fe3d4697ab0b6524cdfbc996be957027bdba63342a52be
- Size
  
  124KB
- MD5
  
  63a7073302793e62fc5549dd6b4c01cb
- SHA1
  
  4669bbabb0a1c88ab43562a320ca7359ed823a30
- SHA256
  
  d29141d2922bd488d3fe3d4697ab0b6524cdfbc996be957027bdba63342a52be
- SHA512
  
  df398dfd3a9b4819aa2df21c4deb54752abed8e47e0921cf94c477f8277045b5322ca6cfee569a1767e341c041affd40f4300911f3b57a199bec9dda0b12649a
- SSDEEP
  
  1536:qSZ2lI7gFvjvQCfWjO/3SjeEbZgkBNFj/AOwZgkBNFj/AOnjfGCq2iW7z:zZ2a7mknO/36vmkXFymkXFdjGCH
Score

10^/10

bdaejec aspackv2 backdoor discovery
- Bdaejec
  Bdaejec is a backdoor written in C++.
  backdoor bdaejec
- Bdaejec family
  bdaejec
- Detects Bdaejec Backdoor.
  Bdaejec is backdoor written in C++.
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1

T1012

System Information Discovery

2

T1082

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Bdaejec family

Detects Bdaejec Backdoor.

ASPack v2.12-2.42

Checks computer location settings

Executes dropped EXE

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2