Extracted

• • Target

    2025-04-09_6f396cad29abab3980ad252e94c8b37e_amadey_black-basta_cobalt-strike_luca-stealer_wapomi

  • Size

    380KB

  • MD5

    6f396cad29abab3980ad252e94c8b37e

  • SHA1

    5533596c2c40c0b7f51006bae1d68ebd9f401605

  • SHA256

    c5d10194fc2509b64f74b41b868748a70401fb18d907b249af4ef19314a88e7f

  • SHA512

    8574baa8d55f87c555a27ac09459f7e962eaf4aaea95df60aa583b609ded0be6295cb35383756461dd658f91760f6a856adac2d2103aca9df3a0bf0913b0e8f4

  • SSDEEP

    6144:l/C8Y4XmCtaOInjZpAbxdxDcWcnR4bfXfwiSeias+8xHgbYpj+w8NO0ctwxepgPf:l/J+CtaxnjZpAbxdxDcWcnR4bfXfwiSO

  Score

  10^/10

  bdaejecaspackv2backdoordiscovery

  • Bdaejec

    Bdaejec is a backdoor written in C++.

    backdoorbdaejec

  • Bdaejec family

    bdaejec

  • Detects Bdaejec Backdoor.

    Bdaejec is backdoor written in C++.

  • ASPack v2.12-2.42

    Detects executables packed with ASPack v2.12-2.42

    aspackv2

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  behavioral1