Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2025-03-25_8d9ba6817de09cfbcb255c5bda87725a_rhadamanthys_smoke-loader_wapomi
-
Size
208KB
-
Sample
250325-pkfx5szjy9
-
MD5
8d9ba6817de09cfbcb255c5bda87725a
-
SHA1
752a18fb1c6032e9502e643c3c4fa9f8a464d22a
-
SHA256
605b832c2b8665e1da009baf9270f40243d6e3a2db08091910f1b35f517b2817
-
SHA512
2f042aba72ed012c8524bb4e0b657e9fe6818df32f95f083a962924f947d9b650515b88d1a7aa36eb32ac3696aa4265d726b5848e2f7ecdcefb3fb4fc550f7f0
-
SSDEEP
3072:LW8KaJvnsgaSIwi/cJimz+zQzBYTBf9pAXAZPuYQOrGCH:Qkv1IHyz+zQeTBl2MuyS
Malware Config
Extracted
bdaejec
ddos.dnsnb8.net
Targets
-
-
Target
2025-03-25_8d9ba6817de09cfbcb255c5bda87725a_rhadamanthys_smoke-loader_wapomi
-
Size
208KB
-
MD5
8d9ba6817de09cfbcb255c5bda87725a
-
SHA1
752a18fb1c6032e9502e643c3c4fa9f8a464d22a
-
SHA256
605b832c2b8665e1da009baf9270f40243d6e3a2db08091910f1b35f517b2817
-
SHA512
2f042aba72ed012c8524bb4e0b657e9fe6818df32f95f083a962924f947d9b650515b88d1a7aa36eb32ac3696aa4265d726b5848e2f7ecdcefb3fb4fc550f7f0
-
SSDEEP
3072:LW8KaJvnsgaSIwi/cJimz+zQzBYTBf9pAXAZPuYQOrGCH:Qkv1IHyz+zQeTBl2MuyS
Score10/10-
Bdaejec
Bdaejec is a backdoor written in C++.
-
Bdaejec family
-
Detects Bdaejec Backdoor.
Bdaejec is backdoor written in C++.
-
ASPack v2.12-2.42
Detects executables packed with ASPack v2.12-2.42
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-