Overview

overview

10

Static

static

3

2024-12-26...mi.exe

windows7-x64

10

2024-12-26...mi.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-12-26_93fdc9287a225ae5fe77d54cbe45faa2_smoke-loader_wapomi

  • Size

    80KB

  • Sample

    241226-lfrx3asjcv

  • MD5

    93fdc9287a225ae5fe77d54cbe45faa2

  • SHA1

    a91d0885a6f606c3bee382b3de21ea7b6089a613

  • SHA256

    ef0b2e824b7eef52a025770f40a561293d832ba67569e78fa295cf93efb583f3

  • SHA512

    2fce079348b9aa103a86b60cc129234eacbcceae92b7bf69f7445d9343b9d214035958210235e60b03c212e77f3ced56dd151163d38daec39b985f45718154bb

  • SSDEEP

    1536:Kg/6/tM8NXDjPX0QWlfGMckTQZEGCq2iW7z:Jk3U8kTQOGCH

Score
10/10
bdaejecaspackv2backdoordiscovery

Malware Config

Extracted

Family

bdaejec

C2

ddos.dnsnb8.net

Targets

    • Target

      2024-12-26_93fdc9287a225ae5fe77d54cbe45faa2_smoke-loader_wapomi

    • Size

      80KB

    • MD5

      93fdc9287a225ae5fe77d54cbe45faa2

    • SHA1

      a91d0885a6f606c3bee382b3de21ea7b6089a613

    • SHA256

      ef0b2e824b7eef52a025770f40a561293d832ba67569e78fa295cf93efb583f3

    • SHA512

      2fce079348b9aa103a86b60cc129234eacbcceae92b7bf69f7445d9343b9d214035958210235e60b03c212e77f3ced56dd151163d38daec39b985f45718154bb

    • SSDEEP

      1536:Kg/6/tM8NXDjPX0QWlfGMckTQZEGCq2iW7z:Jk3U8kTQOGCH

    Score
    10/10
    bdaejecaspackv2backdoordiscovery

    • Bdaejec

      Bdaejec is a backdoor written in C++.

      backdoorbdaejec

    • Bdaejec family

      bdaejec

    • Detects Bdaejec Backdoor.

      Bdaejec is backdoor written in C++.

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks