Backdoor[.]Win32[.]Padodor[.]gen-97709815e6fcbf8dd91d13029bac688560a13f202a73701b9ba243a2f0f470f4 | Triage

Sharing

General

Target

Backdoor.Win32.Padodor.gen-97709815e6fcbf8dd91d13029bac688560a13f202a73701b9ba243a2f0f470f4
Size

416KB
MD5

f990b5cc39a54d6b8da3759ed3c07f74
SHA1

19f59b30b98de19147790332996dfb68f14daeda
SHA256

97709815e6fcbf8dd91d13029bac688560a13f202a73701b9ba243a2f0f470f4
SHA512

cc5a2bddaca0141be6a99e1137b920c5b3c362f3cdf905ad256a1e148c2119063e24f7a0b148bbdf039c3d8242488f46c4d2dda587968a42887f55de717e86dd
SSDEEP

12288:Yrqcu/CYJ07kE0KoFtw2gu9RxrBIUbPLwH96/I0lOZ0vbqFB:Y4/CYJ07kE0KoFtw2gu9RxrBIUbPLwHh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Backdoor.Win32.Padodor.gen-97709815e6fcbf8dd91d13029bac688560a13f202a73701b9ba243a2f0f470f4

Files

Backdoor.Win32.Padodor.gen-97709815e6fcbf8dd91d13029bac688560a13f202a73701b9ba243a2f0f470f4
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 122KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ajelhf
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ