Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

2025-01-07...mi.exe

windows7-x64

10

2025-01-07...mi.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-01-07_e23d93bedca12dd7b7691bbaf6c51819_smoke-loader_wapomi

  • Size

    80KB

  • Sample

    250107-czrlzazlgs

  • MD5

    e23d93bedca12dd7b7691bbaf6c51819

  • SHA1

    32939743a2f49fa634e5be5b6482c67ca3905c94

  • SHA256

    9ed0fb5f2a1b707ec7105d85e0d6660908e478029290343dde532059670d4552

  • SHA512

    d35eb7433c697cda74f260ba2b8bf2c03017386eefa594f0318af29875a729c04633f4e180bcae0ea02e69819696129e28c7b03e7b4b84e265def5999b4be7ab

  • SSDEEP

    1536:RfnLq01weW5yX3jFxv49Nu4GhQkJGCq2iW7z:Y3ysTGhQQGCH

Score
10/10
bdaejecaspackv2backdoordiscovery

Malware Config

Extracted

Family

bdaejec

C2

ddos.dnsnb8.net

Targets

    • Target

      2025-01-07_e23d93bedca12dd7b7691bbaf6c51819_smoke-loader_wapomi

    • Size

      80KB

    • MD5

      e23d93bedca12dd7b7691bbaf6c51819

    • SHA1

      32939743a2f49fa634e5be5b6482c67ca3905c94

    • SHA256

      9ed0fb5f2a1b707ec7105d85e0d6660908e478029290343dde532059670d4552

    • SHA512

      d35eb7433c697cda74f260ba2b8bf2c03017386eefa594f0318af29875a729c04633f4e180bcae0ea02e69819696129e28c7b03e7b4b84e265def5999b4be7ab

    • SSDEEP

      1536:RfnLq01weW5yX3jFxv49Nu4GhQkJGCq2iW7z:Y3ysTGhQQGCH

    Score
    10/10
    bdaejecaspackv2backdoordiscovery

    • Bdaejec

      Bdaejec is a backdoor written in C++.

      backdoorbdaejec

    • Bdaejec family

      bdaejec

    • Detects Bdaejec Backdoor.

      Bdaejec is backdoor written in C++.

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.