bdaejec | f33872774e26dd5224a50c7a855ac4cb6c002d2e9c75dde9235814279dae89fb | Triage

Submit
Reports

Overview

overview

Static

static

5

f33872774e...bN.exe

windows10-2004-x64

Sharing

General

Target

f33872774e26dd5224a50c7a855ac4cb6c002d2e9c75dde9235814279dae89fbN.exe
Size

71KB
Sample

241211-ddqm8asqct
MD5

8335cc2b5669fe55b594b69ac8c814e0
SHA1

72f11c65623cd87812a2e49ee189b126e3c9fd8a
SHA256

f33872774e26dd5224a50c7a855ac4cb6c002d2e9c75dde9235814279dae89fb
SHA512

bcb7a3e08aa98121499ff1dd5e0932d1bf0b7bcd269ca12eb84bf7a4757b8520a51f8e54c471d97373ec646dbcf7ca33f67be9e04b088cf29f8ea93afd2e8074
SSDEEP

1536:T+hzRsibKplyXTq8OGRnsPFG+RODTb7MXL5uXZnzEksGCq2iW7z:iROzoTq0+RO7IwnYJGCH

Score

10^/10

bdaejec ramnit aspackv2 backdoor banker discovery spyware stealer trojan upx worm

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

f33872774e26dd5224a50c7a855ac4cb6c002d2e9c75dde9235814279dae89fbN.exe

Resource

win10v2004-20241007-en

bdaejec ramnit aspackv2 backdoor banker discovery spyware stealer trojan upx worm

windows10-2004-x64

15 signatures

120 seconds

Malware Config

Extracted

Family

bdaejec

C2

ddos.dnsnb8.net

Targets

- Target
  
  f33872774e26dd5224a50c7a855ac4cb6c002d2e9c75dde9235814279dae89fbN.exe
- Size
  
  71KB
- MD5
  
  8335cc2b5669fe55b594b69ac8c814e0
- SHA1
  
  72f11c65623cd87812a2e49ee189b126e3c9fd8a
- SHA256
  
  f33872774e26dd5224a50c7a855ac4cb6c002d2e9c75dde9235814279dae89fb
- SHA512
  
  bcb7a3e08aa98121499ff1dd5e0932d1bf0b7bcd269ca12eb84bf7a4757b8520a51f8e54c471d97373ec646dbcf7ca33f67be9e04b088cf29f8ea93afd2e8074
- SSDEEP
  
  1536:T+hzRsibKplyXTq8OGRnsPFG+RODTb7MXL5uXZnzEksGCq2iW7z:iROzoTq0+RO7IwnYJGCH
Score

10^/10

bdaejec ramnit aspackv2 backdoor banker discovery spyware stealer trojan upx worm
- Bdaejec
  Bdaejec is a backdoor written in C++.
  backdoor bdaejec
- Bdaejec family
  bdaejec
- Detects Bdaejec Backdoor.
  Bdaejec is backdoor written in C++.
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Ramnit family
  ramnit
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bdaejecramnitaspackv2backdoorbankerdiscoveryspywarestealertrojanupxworm

© 2018-2025

Terms | Privacy