Extracted

• • Target

    6d73c0a58d3d5730dbe7d60a4ff0ac4db7a4caf3fd7cb9ee18566c69559e1f4bN.exe

  • Size

    640KB

  • MD5

    4eb36cfba1c36b5d632db7af5907a300

  • SHA1

    619c194235236d6f7fb9082d56742c30cc7f7b4f

  • SHA256

    6d73c0a58d3d5730dbe7d60a4ff0ac4db7a4caf3fd7cb9ee18566c69559e1f4b

  • SHA512

    38a07ecc016084922ee3cd2407168c3fc16c4e126b8582f751dd24e2dda360cd830f0c4707f242aebf83e3e7b67182abd07dda22f55f9d72ebe1c5c68a65d2af

  • SSDEEP

    12288:hJUvxKcxpJ6HL3D0jwiZcaKqqnfrjSZYqWP8Eq7tbgVv09smaM:U3xQDdiZcaKZYkq7tbg9

  Score

  10^/10

  bdaejecaspackv2backdoordiscovery

  • Bdaejec

    Bdaejec is a backdoor written in C++.

    backdoorbdaejec

  • Bdaejec family

    bdaejec

  • Detects Bdaejec Backdoor.

    Bdaejec is backdoor written in C++.

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2