Extracted

• • Target

    JaffaCakes118_6b8ee41bb75e0139d47bad35224aec10

  • Size

    190KB

  • MD5

    6b8ee41bb75e0139d47bad35224aec10

  • SHA1

    478aabdd002031da79cd02d85f0966290ecff6fd

  • SHA256

    a61cf1002336c73941cb01f6a8799ebcba940b42118dabcc2af443b930bd9e04

  • SHA512

    6da833ecef7b1c5592866a7ba07206f5ea644cb19c10c2f0c25ad1aff279878a3cdc987033f4368e8a09d17957f920785f418e223c6675e618452d3789054899

  • SSDEEP

    3072:lWNvj0PaGN8RWTLSQbqfJy4tfQ/ZaP0O1r2lmpDMzJDQGCH:lWN72rN2U5mk4to/I84DMf

  Score

  10^/10

  bdaejecaspackv2backdoordiscovery

  • Bdaejec

    Bdaejec is a backdoor written in C++.

    backdoorbdaejec

  • Bdaejec family

    bdaejec

  • Detects Bdaejec Backdoor.

    Bdaejec is backdoor written in C++.

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2