bdaejec | 73e8bbf9716e0460dfc1a656c3884a9f14c7f179db401d3652058414be805cba | Triage

Submit
Reports

Overview

overview

Static

static

3

73e8bbf971...ba.exe

windows10-2004-x64

Sharing

General

Target

73e8bbf9716e0460dfc1a656c3884a9f14c7f179db401d3652058414be805cba
Size

2.0MB
Sample

250410-r8fndsvlt2
MD5

25bd09e75cc31a9ab39e739ae3bdca2b
SHA1

af660cc1a62ad1bffbbfbadfaf50846f6b3e2c84
SHA256

73e8bbf9716e0460dfc1a656c3884a9f14c7f179db401d3652058414be805cba
SHA512

b4dc41e09f98ba0ffc0cd245dbd4eaa1ed6cf100d7cb235e7b25c0c7d94ff39a937d891b3a4f24874d61dc947bacb29e0dc8e80e2ceb686487e779c38a83a5f4
SSDEEP

49152:RTLtZcLMopOtzOLmKTpme0hmjAWEQtjPXDfnPkK9medQEfyM:RQOlEmKFdPjAWEQt7XznMKsedF

Score

10^/10

bdaejec aspackv2 backdoor discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

73e8bbf9716e0460dfc1a656c3884a9f14c7f179db401d3652058414be805cba.exe

Resource

win10v2004-20250313-en

bdaejec aspackv2 backdoor discovery

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Extracted

Family

bdaejec

C2

ddos.dnsnb8.net

Targets

- Target
  
  73e8bbf9716e0460dfc1a656c3884a9f14c7f179db401d3652058414be805cba
- Size
  
  2.0MB
- MD5
  
  25bd09e75cc31a9ab39e739ae3bdca2b
- SHA1
  
  af660cc1a62ad1bffbbfbadfaf50846f6b3e2c84
- SHA256
  
  73e8bbf9716e0460dfc1a656c3884a9f14c7f179db401d3652058414be805cba
- SHA512
  
  b4dc41e09f98ba0ffc0cd245dbd4eaa1ed6cf100d7cb235e7b25c0c7d94ff39a937d891b3a4f24874d61dc947bacb29e0dc8e80e2ceb686487e779c38a83a5f4
- SSDEEP
  
  49152:RTLtZcLMopOtzOLmKTpme0hmjAWEQtjPXDfnPkK9medQEfyM:RQOlEmKFdPjAWEQt7XznMKsedF
Score

10^/10

bdaejec aspackv2 backdoor discovery
- Bdaejec
  Bdaejec is a backdoor written in C++.
  backdoor bdaejec
- Bdaejec family
  bdaejec
- Detects Bdaejec Backdoor.
  Bdaejec is backdoor written in C++.
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bdaejecaspackv2backdoordiscovery

© 2018-2025

Terms | Privacy