Skip to content
MalwareWiki

Malware

Edam

aka SECONDBEST

According to Orange Cyberdefense, Edam is written in C++ and its PDB path indicates it is called "droper_dll".

According to Orange Cyberdefense, Edam is written in C++ and its PDB path indicates it is called "droper_dll". It is capable of establishing persistence by setting up a Run key as Setting App which points towards its own file and then of downloading from another C2 a final stage using HTTP GET.

Family metadata imported from Malpedia (Fraunhofer FKIE).