General

  • Target

    c7fa60fece8e8c02b94c57428ba13e9e098937487ed0892ab96bff845139a3b7.exe

  • Size

    52KB

  • Sample

    241219-h4fyxstrgy

  • MD5

    2861b17e9ca13559ab4fb54a765cd3f0

  • SHA1

    8fcf372bf2c8f0fd111d7ca7ebee8122ab152d84

  • SHA256

    c7fa60fece8e8c02b94c57428ba13e9e098937487ed0892ab96bff845139a3b7

  • SHA512

    85d0583dceca0a5ad063890fb5faaa184f982a786fb6a7d36312af66d20c8a80d84f5de5ed5a86d37dc06e4f8c9c732d078bbd0b99dc009c348d8e6b12481036

  • SSDEEP

    768:QVMe3Vk9haLNFZ131W8g/iNQGPL4vzZDr9W7GsxBbPr6:uMASiLNFZdO/i6GCFW7z+

Malware Config

Targets

    • Target

      c7fa60fece8e8c02b94c57428ba13e9e098937487ed0892ab96bff845139a3b7.exe

    • Size

      52KB

    • MD5

      2861b17e9ca13559ab4fb54a765cd3f0

    • SHA1

      8fcf372bf2c8f0fd111d7ca7ebee8122ab152d84

    • SHA256

      c7fa60fece8e8c02b94c57428ba13e9e098937487ed0892ab96bff845139a3b7

    • SHA512

      85d0583dceca0a5ad063890fb5faaa184f982a786fb6a7d36312af66d20c8a80d84f5de5ed5a86d37dc06e4f8c9c732d078bbd0b99dc009c348d8e6b12481036

    • SSDEEP

      768:QVMe3Vk9haLNFZ131W8g/iNQGPL4vzZDr9W7GsxBbPr6:uMASiLNFZdO/i6GCFW7z+

    • Bdaejec

      Bdaejec is a backdoor written in C++.

    • Bdaejec family

    • Detects Bdaejec Backdoor.

      Bdaejec is backdoor written in C++.

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks