Extracted

• • Target

    JaffaCakes118_6685d3c2a1a1c4aca8dd884b73af5290

  • Size

    158KB

  • MD5

    6685d3c2a1a1c4aca8dd884b73af5290

  • SHA1

    8fca64977e4fe43ce6da66cad9e45f26226adef9

  • SHA256

    840c9b9926a60e7c4efc340834d1680939c4daa50665c26298ce8cca43697c05

  • SHA512

    c54edc80fceba5d8b63964af7f7b39b5f5e5ff54b39029960ab2758da0fe36ed209bec97eec9edeb5f2975683e7c7c30dcbabd0bcc874f8b192be5f5021d5779

  • SSDEEP

    1536:yN6gJk0sKTaBAmpeWf1JOB67UXt2MZojGTmz5LH9LsS0KHNZQkMhOxN5EqHqbaG3:yNxyKT4pQBPlWjR3HNZFDxN5Eq4pGCH

  Score

  10^/10

  bdaejecaspackv2backdoordiscovery

  • Bdaejec

    Bdaejec is a backdoor written in C++.

    backdoorbdaejec

  • Bdaejec family

    bdaejec

  • Detects Bdaejec Backdoor.

    Bdaejec is backdoor written in C++.

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2