Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
6d73c0a58d3d5730dbe7d60a4ff0ac4db7a4caf3fd7cb9ee18566c69559e1f4bN.exe
-
Size
640KB
-
Sample
250102-hkp3gsyndz
-
MD5
4eb36cfba1c36b5d632db7af5907a300
-
SHA1
619c194235236d6f7fb9082d56742c30cc7f7b4f
-
SHA256
6d73c0a58d3d5730dbe7d60a4ff0ac4db7a4caf3fd7cb9ee18566c69559e1f4b
-
SHA512
38a07ecc016084922ee3cd2407168c3fc16c4e126b8582f751dd24e2dda360cd830f0c4707f242aebf83e3e7b67182abd07dda22f55f9d72ebe1c5c68a65d2af
-
SSDEEP
12288:hJUvxKcxpJ6HL3D0jwiZcaKqqnfrjSZYqWP8Eq7tbgVv09smaM:U3xQDdiZcaKZYkq7tbg9
Static task
static1
Behavioral task
behavioral1
Sample
6d73c0a58d3d5730dbe7d60a4ff0ac4db7a4caf3fd7cb9ee18566c69559e1f4bN.exe
Resource
win7-20241010-en
Malware Config
Extracted
bdaejec
ddos.dnsnb8.net
Targets
-
-
Target
6d73c0a58d3d5730dbe7d60a4ff0ac4db7a4caf3fd7cb9ee18566c69559e1f4bN.exe
-
Size
640KB
-
MD5
4eb36cfba1c36b5d632db7af5907a300
-
SHA1
619c194235236d6f7fb9082d56742c30cc7f7b4f
-
SHA256
6d73c0a58d3d5730dbe7d60a4ff0ac4db7a4caf3fd7cb9ee18566c69559e1f4b
-
SHA512
38a07ecc016084922ee3cd2407168c3fc16c4e126b8582f751dd24e2dda360cd830f0c4707f242aebf83e3e7b67182abd07dda22f55f9d72ebe1c5c68a65d2af
-
SSDEEP
12288:hJUvxKcxpJ6HL3D0jwiZcaKqqnfrjSZYqWP8Eq7tbgVv09smaM:U3xQDdiZcaKZYkq7tbg9
-
Bdaejec family
-
Detects Bdaejec Backdoor.
Bdaejec is backdoor written in C++.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-