bdaejec

General

Target

JaffaCakes118_7aeecadeffcbe87329acb45cd5b97a2d
Size

265KB
Sample

250104-v411ba1pcm
MD5

7aeecadeffcbe87329acb45cd5b97a2d
SHA1

6fd335af6d246496b553888ccf22679962deaf33
SHA256

d6746f21bff4772ace893ea1914d0015d5a747a442df12198593d1facf2c73cc
SHA512

69a67a96a5f73570648ae74675bc59a845f2276361fc442c01d6c55294d4beb01a30f20d5fad2ee108b8bdee5c02a7e986c60bcaeacb488a68b421c0b3089693
SSDEEP

6144:y8SkluhFijLEtHH0R/ScslxUNw8bk6X9nvzbKAOXfgscJn:yAyFiH/ScslxUNy69nLbKxod

Score

10^/10

Malware Config

Extracted

Family

bdaejec

C2

ddos.dnsnb8.net

Targets

- Target
  
  JaffaCakes118_7aeecadeffcbe87329acb45cd5b97a2d
- Size
  
  265KB
- MD5
  
  7aeecadeffcbe87329acb45cd5b97a2d
- SHA1
  
  6fd335af6d246496b553888ccf22679962deaf33
- SHA256
  
  d6746f21bff4772ace893ea1914d0015d5a747a442df12198593d1facf2c73cc
- SHA512
  
  69a67a96a5f73570648ae74675bc59a845f2276361fc442c01d6c55294d4beb01a30f20d5fad2ee108b8bdee5c02a7e986c60bcaeacb488a68b421c0b3089693
- SSDEEP
  
  6144:y8SkluhFijLEtHH0R/ScslxUNw8bk6X9nvzbKAOXfgscJn:yAyFiH/ScslxUNy69nLbKxod
Score

10^/10

bdaejec aspackv2 backdoor discovery
- Bdaejec
  Bdaejec is a backdoor written in C++.
  backdoor bdaejec
- Bdaejec family
  bdaejec
- Detects Bdaejec Backdoor.
  Bdaejec is backdoor written in C++.
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1

T1012

System Information Discovery

2

T1082

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Bdaejec family

Detects Bdaejec Backdoor.

ASPack v2.12-2.42

Checks computer location settings

Executes dropped EXE

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2