Extracted

• • Target

    JaffaCakes118_6555d17d182d40dcc8153c42656f2180

  • Size

    459KB

  • MD5

    6555d17d182d40dcc8153c42656f2180

  • SHA1

    e2494ce0d260384dcc66c8b180c20a52c567a748

  • SHA256

    ba790a547fe066e1ea35ffcc234cd65f98995dc3581209cdd0ca27099c465f91

  • SHA512

    94f239e3f5c4e207941cd5ef0ed81a24d6a6c43807a47a822a87dca960e8b46a174cc2c74bb40ab5fb98c9903479a47d4a1f7c95d8dd2af250c053fa82823fe7

  • SSDEEP

    12288:3QSWTJcK5m+R1fuUnBdyRLgYUj2PJBUab7ycbiU:3QSO7FdyRrjPJB/bN

  Score

  10^/10

  bdaejecaspackv2backdoordiscovery

  • Bdaejec

    Bdaejec is a backdoor written in C++.

    backdoorbdaejec

  • Bdaejec family

    bdaejec

  • Detects Bdaejec Backdoor.

    Bdaejec is backdoor written in C++.

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2