Extracted

• • Target

    JaffaCakes118_6b446b71c587aff379a8fefe1204a110

  • Size

    72KB

  • MD5

    6b446b71c587aff379a8fefe1204a110

  • SHA1

    0757deb7a44d28176556d749a742c1677a755e7f

  • SHA256

    ed0dfb57416a24df762a337278823cb19c1875f0e9aeeaddf6689a474ecf51f0

  • SHA512

    ac052a0277a837c66b73d26768c35adcb4833b759f484ac3fd977796e93a7946baab48b565ca070962f654c121a78f037eb734230b5a0a3018e8239f56b06135

  • SSDEEP

    1536:g8mNL0nNwCeVGOqPsSCk6l89CEciwCI8YGCq2iW7z:RKAnNReIHPdf6l89CEcppGCH

  Score

  10^/10

  bdaejecaspackv2backdoordiscovery

  • Bdaejec

    Bdaejec is a backdoor written in C++.

    backdoorbdaejec

  • Bdaejec family

    bdaejec

  • Detects Bdaejec Backdoor.

    Bdaejec is backdoor written in C++.

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2