Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2025-03-25_d54ed6a40b267ba5c7e57b9d00ca5c75_rhadamanthys_smoke-loader_wapomi
-
Size
80KB
-
Sample
250325-p52ekszmw2
-
MD5
d54ed6a40b267ba5c7e57b9d00ca5c75
-
SHA1
ea7306c32ad8f47961272c5320ea0cef97bfe523
-
SHA256
11ea70cd8340521428e6ea6c1193cd2ad5caa1f170e581fa41bdb1e2b1219725
-
SHA512
d9ccaa0c3aa4b2567ba817c1f9da86b92afa73e720a1f3c375608e3d25cf53383f36d81f23e9ebdfe6c8890d2ea212f0aac5f73c7a75ec2a8203e82b10ade9de
-
SSDEEP
1536:Yg/6/tM8NXDjPX0QWlfGMckTQPXGCq2iW7z:Hk3U8kTQvGCH
Malware Config
Extracted
bdaejec
ddos.dnsnb8.net
Targets
-
-
Target
2025-03-25_d54ed6a40b267ba5c7e57b9d00ca5c75_rhadamanthys_smoke-loader_wapomi
-
Size
80KB
-
MD5
d54ed6a40b267ba5c7e57b9d00ca5c75
-
SHA1
ea7306c32ad8f47961272c5320ea0cef97bfe523
-
SHA256
11ea70cd8340521428e6ea6c1193cd2ad5caa1f170e581fa41bdb1e2b1219725
-
SHA512
d9ccaa0c3aa4b2567ba817c1f9da86b92afa73e720a1f3c375608e3d25cf53383f36d81f23e9ebdfe6c8890d2ea212f0aac5f73c7a75ec2a8203e82b10ade9de
-
SSDEEP
1536:Yg/6/tM8NXDjPX0QWlfGMckTQPXGCq2iW7z:Hk3U8kTQvGCH
Score10/10-
Bdaejec
Bdaejec is a backdoor written in C++.
-
Bdaejec family
-
Detects Bdaejec Backdoor.
Bdaejec is backdoor written in C++.
-
ASPack v2.12-2.42
Detects executables packed with ASPack v2.12-2.42
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-