Extracted

• • Target

    2025-03-21_d06c26ee1b191c9c9633da1e9d3d021b_amadey_karagany_mafia_rhadamanthys_wapomi

  • Size

    97KB

  • MD5

    d06c26ee1b191c9c9633da1e9d3d021b

  • SHA1

    9fdac55507deaedcea1853c4c3648d4b45450d70

  • SHA256

    5a86172818eebb4cf7bbb82a68a4f36445ee4650427f5bb7a49265210bc83380

  • SHA512

    42b8f52fab34d808710b2fa6dcdec62ac7f66d82a96051b8043de14362afe3455d91f248d2f392eac3228858733619131c2d2d711b6469ffd55cf303b862690c

  • SSDEEP

    1536:j+9xpF4YChMSYN1Vku3I0LaGvjaI8i0a50dVNXGCq2iW7z:jyXhChMSYd3jaGOraYJGCH

  Score

  10^/10

  bdaejecaspackv2backdoordiscovery

  • Bdaejec

    Bdaejec is a backdoor written in C++.

    backdoorbdaejec

  • Bdaejec family

    bdaejec

  • Detects Bdaejec Backdoor.

    Bdaejec is backdoor written in C++.

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2