Extracted

• • Target

    6f37a7802a3eb9572aafe7383a3790d7ae3516fe46a19f30a6cec3f2ee7c78a7

  • Size

    464KB

  • MD5

    cdf57c6ddb8101b3df63cbdb906f553b

  • SHA1

    91335d4e17c6f170a51ffe4255813cddad7a1f6a

  • SHA256

    6f37a7802a3eb9572aafe7383a3790d7ae3516fe46a19f30a6cec3f2ee7c78a7

  • SHA512

    a29ba75df9287a047f212fc653645f24e253d82d9680a98740214356ed453ee75b068a4f4743ce9b842a5886641486d8430e214987d4046fef15649de08cf0ce

  • SSDEEP

    12288:05NaIk7nsp5pahQ2hkhsYvCpJZ2u4Tsgm/:05lB2hkhfvCpf2fTf

  Score

  10^/10

  bdaejecaspackv2backdoordiscovery

  • Bdaejec

    Bdaejec is a backdoor written in C++.

    backdoorbdaejec

  • Bdaejec family

    bdaejec

  • Detects Bdaejec Backdoor.

    Bdaejec is backdoor written in C++.

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2