bdaejec | b8660c642cd378e4daddae0fde8b2288cd4692c63d9dd70314e057e02eb805ff | Triage

Submit
Reports

Overview

overview

Static

static

3

2025-04-07...mi.exe

windows10-2004-x64

Sharing

General

Target

2025-04-07_ce3e6677d0305fdd2075fdc7c692fce2_bkransomware_karagany_rhadamanthys_wapomi
Size

90KB
Sample

250407-fdwwcayycs
MD5

ce3e6677d0305fdd2075fdc7c692fce2
SHA1

a8a4be9610a33a6a21e4ec600a9c7f8b4e12af44
SHA256

b8660c642cd378e4daddae0fde8b2288cd4692c63d9dd70314e057e02eb805ff
SHA512

ce24c17f14a930cae164681e5f7dac954d94420e03efd0e32df1ade06373ecd0fa387befa19924a7e7c40ae7f7b0c272dc306d3b87d34ec50b400a1e6614c8d8
SSDEEP

1536:KJgIzEO/p3BjXV1bG5r4rW7r4tc+L19sWjcdx8KarjGCq2iW7z:ov1/G5+L1C67GCH

Score

10^/10

bdaejec aspackv2 backdoor discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2025-04-07_ce3e6677d0305fdd2075fdc7c692fce2_bkransomware_karagany_rhadamanthys_wapomi.exe

Resource

win10v2004-20250314-en

bdaejec aspackv2 backdoor discovery

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Extracted

Family

bdaejec

C2

ddos.dnsnb8.net

Targets

- Target
  
  2025-04-07_ce3e6677d0305fdd2075fdc7c692fce2_bkransomware_karagany_rhadamanthys_wapomi
- Size
  
  90KB
- MD5
  
  ce3e6677d0305fdd2075fdc7c692fce2
- SHA1
  
  a8a4be9610a33a6a21e4ec600a9c7f8b4e12af44
- SHA256
  
  b8660c642cd378e4daddae0fde8b2288cd4692c63d9dd70314e057e02eb805ff
- SHA512
  
  ce24c17f14a930cae164681e5f7dac954d94420e03efd0e32df1ade06373ecd0fa387befa19924a7e7c40ae7f7b0c272dc306d3b87d34ec50b400a1e6614c8d8
- SSDEEP
  
  1536:KJgIzEO/p3BjXV1bG5r4rW7r4tc+L19sWjcdx8KarjGCq2iW7z:ov1/G5+L1C67GCH
Score

10^/10

bdaejec aspackv2 backdoor discovery
- Bdaejec
  Bdaejec is a backdoor written in C++.
  backdoor bdaejec
- Bdaejec family
  bdaejec
- Detects Bdaejec Backdoor.
  Bdaejec is backdoor written in C++.
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bdaejecaspackv2backdoordiscovery

© 2018-2025

Terms | Privacy