Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

JaffaCakes...40.exe

windows7-x64

10

JaffaCakes...40.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_7a4a702b609fa0f75faaefbf23831b40

  • Size

    150KB

  • Sample

    250104-r7xwaawpaj

  • MD5

    7a4a702b609fa0f75faaefbf23831b40

  • SHA1

    0928c27b0f0970fd5df8a4a5b148d67b53e13474

  • SHA256

    0d34ed2df026b376097394233e1f1dfda256c68e5e02ad97517d48475f08473f

  • SHA512

    290282fd4440f03a8916450eb2cc011c25aa1a9b475d2e0d470da6f01eff4af21002f7b51ee72f84684f639caedfb50c49a8a3dd517d9f6331ceaa5dce21c004

  • SSDEEP

    3072:tHyOtBc7XVfkkhKbDrnbZZwNfE+u5EoGCH:5yGqJkkhKXrnFGfvV

Score
10/10
bdaejecaspackv2backdoordiscovery

Malware Config

Extracted

Family

bdaejec

C2

ddos.dnsnb8.net

Targets

    • Target

      JaffaCakes118_7a4a702b609fa0f75faaefbf23831b40

    • Size

      150KB

    • MD5

      7a4a702b609fa0f75faaefbf23831b40

    • SHA1

      0928c27b0f0970fd5df8a4a5b148d67b53e13474

    • SHA256

      0d34ed2df026b376097394233e1f1dfda256c68e5e02ad97517d48475f08473f

    • SHA512

      290282fd4440f03a8916450eb2cc011c25aa1a9b475d2e0d470da6f01eff4af21002f7b51ee72f84684f639caedfb50c49a8a3dd517d9f6331ceaa5dce21c004

    • SSDEEP

      3072:tHyOtBc7XVfkkhKbDrnbZZwNfE+u5EoGCH:5yGqJkkhKXrnFGfvV

    Score
    10/10
    bdaejecaspackv2backdoordiscovery

    • Bdaejec

      Bdaejec is a backdoor written in C++.

      backdoorbdaejec

    • Bdaejec family

      bdaejec

    • Detects Bdaejec Backdoor.

      Bdaejec is backdoor written in C++.

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.