Extracted

• • Target

    2025-03-23_d30f699a0d5a4ad55a9c8b6a978fad48_smoke-loader_wapomi

  • Size

    42KB

  • MD5

    d30f699a0d5a4ad55a9c8b6a978fad48

  • SHA1

    c341c75c0537381d28005250d4a811b1cc69bc76

  • SHA256

    be1cf2b98c7413a7321e5d261a4e411088f39052418bb7a59b6fd3b5b36a354f

  • SHA512

    4e2f1807abb993dcce3a910a0fdb7d6d655260ae24be3c782135fd71f514916fb9c686687d4b0db6393a25af767ac01372419df9513645463b1221e0725f0773

  • SSDEEP

    768:7ofFhw9NkRKFqIA4Q0ndmMI15glZBfnHQGPL4vzZq2o9W7GsxBbPr:waKK3mM45ghfwGCq2iW7z

  Score

  10^/10

  bdaejecaspackv2backdoordiscoveryupx

  • Bdaejec

    Bdaejec is a backdoor written in C++.

    backdoorbdaejec

  • Bdaejec family

    bdaejec

  • Detects Bdaejec Backdoor.

    Bdaejec is backdoor written in C++.

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2