Backdoor[.]Win32[.]Padodor[.]gen-8dec3ca4c1802097df0b4beaf24f889e39505aae2f42eb31c6c2e2ddd63898f3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Backdoor.Win32.Padodor.gen-8dec3ca4c1802097df0b4beaf24f889e39505aae2f42eb31c6c2e2ddd63898f3
Size

224KB
MD5

139d17f1eeaf90490827add898cb8d8b
SHA1

6152a9030caa1e5213bbdf9ece009286756a5fb5
SHA256

8dec3ca4c1802097df0b4beaf24f889e39505aae2f42eb31c6c2e2ddd63898f3
SHA512

2107e5788d3e4a0866c6bc9b4f9b408bac26e4806ea7607cb2f7733a076a957cde8ccf4feffcc1fbf1ee75ca8c2b6a798d76b0756691b7980a135dbab14680c8
SSDEEP

6144:pPTwBLwmpUsjSLkE4f9FIUpOVw86CmOJfTo9FIUIhrcflDML:pPTwBLwmrSPaAD6RrI1+lDML

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Backdoor.Win32.Padodor.gen-8dec3ca4c1802097df0b4beaf24f889e39505aae2f42eb31c6c2e2ddd63898f3

Files

Backdoor.Win32.Padodor.gen-8dec3ca4c1802097df0b4beaf24f889e39505aae2f42eb31c6c2e2ddd63898f3
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 122KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ajelhf
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ