bdaejec | 3c9448445b0384a54ad64ff5b47b8529f1b930a22c23cb0d14e73ccd5c17b114 | Triage

Submit
Reports

Overview

overview

Static

static

3

2025-04-07...mi.exe

windows10-2004-x64

Sharing

General

Target

2025-04-07_a6d768091afd771a71020aa43e0a0d26_amadey_smoke-loader_wapomi
Size

474KB
Sample

250407-wx3q1azxes
MD5

a6d768091afd771a71020aa43e0a0d26
SHA1

68fa5c6e4abc73ed28c4c088b066da78b3cc7289
SHA256

3c9448445b0384a54ad64ff5b47b8529f1b930a22c23cb0d14e73ccd5c17b114
SHA512

2c9872513ec855fe4ec88e218b7913893dde9428e7d5ce0814963b4da822bab0cbf1152cd24f9597bb9f074dfb4ed3f7c112045a415d63c200e48fd3e05ea552
SSDEEP

12288:N0QsSmAKgxCk5IPYOVhJUInmB0kwKyI6t2CtOjpcoPa:N0CyjJUIw0kwK5hjpco

Score

10^/10

bdaejec aspackv2 backdoor discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2025-04-07_a6d768091afd771a71020aa43e0a0d26_amadey_smoke-loader_wapomi.exe

Resource

win10v2004-20250314-en

bdaejec aspackv2 backdoor discovery

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Extracted

Family

bdaejec

C2

ddos.dnsnb8.net

Targets

- Target
  
  2025-04-07_a6d768091afd771a71020aa43e0a0d26_amadey_smoke-loader_wapomi
- Size
  
  474KB
- MD5
  
  a6d768091afd771a71020aa43e0a0d26
- SHA1
  
  68fa5c6e4abc73ed28c4c088b066da78b3cc7289
- SHA256
  
  3c9448445b0384a54ad64ff5b47b8529f1b930a22c23cb0d14e73ccd5c17b114
- SHA512
  
  2c9872513ec855fe4ec88e218b7913893dde9428e7d5ce0814963b4da822bab0cbf1152cd24f9597bb9f074dfb4ed3f7c112045a415d63c200e48fd3e05ea552
- SSDEEP
  
  12288:N0QsSmAKgxCk5IPYOVhJUInmB0kwKyI6t2CtOjpcoPa:N0CyjJUIw0kwK5hjpco
Score

10^/10

bdaejec aspackv2 backdoor discovery
- Bdaejec
  Bdaejec is a backdoor written in C++.
  backdoor bdaejec
- Bdaejec family
  bdaejec
- Detects Bdaejec Backdoor.
  Bdaejec is backdoor written in C++.
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bdaejecaspackv2backdoordiscovery

© 2018-2025

Terms | Privacy