Overview

overview

10

Static

static

3

2024-12-30...mi.exe

windows7-x64

10

2024-12-30...mi.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-12-30_302e12c8e4a3cca557c74e9a61858ee7_smoke-loader_wapomi

  • Size

    1.2MB

  • Sample

    241230-kmt6bstpaq

  • MD5

    302e12c8e4a3cca557c74e9a61858ee7

  • SHA1

    f4b5aa4f15d8977390e182b0c4fb5eb9f2d90a05

  • SHA256

    e8c3360878cefc63f9b93fd2541eaead886c33b5ffe3118dc3d314b1147f94a9

  • SHA512

    e3e9719b2a0e0e89bb56d1595922e357d85bc9d4fb2b32b3b141018674d137b8f48df4eeafa75b23c774b4cc3c7cabfa986a89260d47ffb3fd9e69fed578cd2d

  • SSDEEP

    24576:07GO7dtrjrICw9XuXo7beSTdt5xbX02uvfTXfBxrj3d5E/jKQvVj4YpdjYY0td78:1EtnrICSooGSTD5xbX022fjBxrj3

Score
10/10
bdaejecaspackv2backdoordiscovery

Malware Config

Extracted

Family

bdaejec

C2

ddos.dnsnb8.net

Targets

    • Target

      2024-12-30_302e12c8e4a3cca557c74e9a61858ee7_smoke-loader_wapomi

    • Size

      1.2MB

    • MD5

      302e12c8e4a3cca557c74e9a61858ee7

    • SHA1

      f4b5aa4f15d8977390e182b0c4fb5eb9f2d90a05

    • SHA256

      e8c3360878cefc63f9b93fd2541eaead886c33b5ffe3118dc3d314b1147f94a9

    • SHA512

      e3e9719b2a0e0e89bb56d1595922e357d85bc9d4fb2b32b3b141018674d137b8f48df4eeafa75b23c774b4cc3c7cabfa986a89260d47ffb3fd9e69fed578cd2d

    • SSDEEP

      24576:07GO7dtrjrICw9XuXo7beSTdt5xbX02uvfTXfBxrj3d5E/jKQvVj4YpdjYY0td78:1EtnrICSooGSTD5xbX022fjBxrj3

    Score
    10/10
    bdaejecaspackv2backdoordiscovery

    • Bdaejec

      Bdaejec is a backdoor written in C++.

      backdoorbdaejec

    • Bdaejec family

      bdaejec

    • Detects Bdaejec Backdoor.

      Bdaejec is backdoor written in C++.

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.