Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

JaffaCakes...f0.exe

windows7-x64

10

JaffaCakes...f0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_7bbbe6e1959b676f25b8d362b52bdcf0

  • Size

    116KB

  • Sample

    250104-zspv5axkaz

  • MD5

    7bbbe6e1959b676f25b8d362b52bdcf0

  • SHA1

    bc09abd1b9a217125cb43acec7b72f9fbc0282da

  • SHA256

    7238a34952ecbe58390cb2da820a521d4d3058e1f8323302dd2424fdc9dadb1a

  • SHA512

    84d2d2a1a828f4279675d13e4f657f1d6ce4fbbb19234f2d7c46cde4d67178a33c73bb5c99a0d52391aba37096752cd4dcffb47ce14c879d6b69b86cde035832

  • SSDEEP

    3072:pZgC/uOY3G1dYzZZ3JfAg/UhCshlxTDGCH:pWC/zY3GzYzLJfv/UhFE

Score
10/10
bdaejecaspackv2backdoordiscovery

Malware Config

Extracted

Family

bdaejec

C2

ddos.dnsnb8.net

Targets

    • Target

      JaffaCakes118_7bbbe6e1959b676f25b8d362b52bdcf0

    • Size

      116KB

    • MD5

      7bbbe6e1959b676f25b8d362b52bdcf0

    • SHA1

      bc09abd1b9a217125cb43acec7b72f9fbc0282da

    • SHA256

      7238a34952ecbe58390cb2da820a521d4d3058e1f8323302dd2424fdc9dadb1a

    • SHA512

      84d2d2a1a828f4279675d13e4f657f1d6ce4fbbb19234f2d7c46cde4d67178a33c73bb5c99a0d52391aba37096752cd4dcffb47ce14c879d6b69b86cde035832

    • SSDEEP

      3072:pZgC/uOY3G1dYzZZ3JfAg/UhCshlxTDGCH:pWC/zY3GzYzLJfv/UhFE

    Score
    10/10
    bdaejecaspackv2backdoordiscovery

    • Bdaejec

      Bdaejec is a backdoor written in C++.

      backdoorbdaejec

    • Bdaejec family

      bdaejec

    • Detects Bdaejec Backdoor.

      Bdaejec is backdoor written in C++.

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.