bdaejec | 335e4239c7b8891cf36c3ba9305d53a3d4381176e2e5244391a74090efdbab44 | Triage

Submit
Reports

Overview

overview

Static

static

3

335e4239c7...4N.exe

windows7-x64

335e4239c7...4N.exe

windows10-2004-x64

Sharing

General

Target

335e4239c7b8891cf36c3ba9305d53a3d4381176e2e5244391a74090efdbab44N.exe
Size

538KB
Sample

250216-r586ja1kdv
MD5

5ac28f0df6b68d5e86915c332e748030
SHA1

99c85a3dd44202adad7c6986b76188629d844dfe
SHA256

335e4239c7b8891cf36c3ba9305d53a3d4381176e2e5244391a74090efdbab44
SHA512

8f5cb777e345d43817efeaa3f106fb97af86c738488de57ba63caf90d52223d4f2cf5f02771983e28b83d1c157d0de85aa89717f4efef39eda0d783beb8a5364
SSDEEP

12288:xrMIztyCK5x8CBmn+RrNbEyWYa0Ie1vUxjV:HZyCA8CBmn+RrNj9ay5G

Score

10^/10

bdaejec aspackv2 backdoor discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

335e4239c7b8891cf36c3ba9305d53a3d4381176e2e5244391a74090efdbab44N.exe

Resource

win7-20240903-en

bdaejec aspackv2 backdoor discovery

windows7-x64

11 signatures

120 seconds

Behavioral task

behavioral2

Sample

335e4239c7b8891cf36c3ba9305d53a3d4381176e2e5244391a74090efdbab44N.exe

Resource

win10v2004-20250211-en

bdaejec aspackv2 backdoor discovery

windows10-2004-x64

12 signatures

120 seconds

Malware Config

Extracted

Family

bdaejec

C2

ddos.dnsnb8.net

Targets

- Target
  
  335e4239c7b8891cf36c3ba9305d53a3d4381176e2e5244391a74090efdbab44N.exe
- Size
  
  538KB
- MD5
  
  5ac28f0df6b68d5e86915c332e748030
- SHA1
  
  99c85a3dd44202adad7c6986b76188629d844dfe
- SHA256
  
  335e4239c7b8891cf36c3ba9305d53a3d4381176e2e5244391a74090efdbab44
- SHA512
  
  8f5cb777e345d43817efeaa3f106fb97af86c738488de57ba63caf90d52223d4f2cf5f02771983e28b83d1c157d0de85aa89717f4efef39eda0d783beb8a5364
- SSDEEP
  
  12288:xrMIztyCK5x8CBmn+RrNbEyWYa0Ie1vUxjV:HZyCA8CBmn+RrNj9ay5G
Score

10^/10

bdaejec aspackv2 backdoor discovery
- Bdaejec
  Bdaejec is a backdoor written in C++.
  backdoor bdaejec
- Bdaejec family
  bdaejec
- Detects Bdaejec Backdoor.
  Bdaejec is backdoor written in C++.
- Downloads MZ/PE file
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bdaejecaspackv2backdoordiscovery

behavioral2

bdaejecaspackv2backdoordiscovery

© 2018-2025

Terms | Privacy