Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Backdoor.Win32.Padodor.gen-a6dee1f12991dd7243ad1e11ade37e56cf5a166188aacac7a3f3ca2bb9b7e646

  • Size

    229KB

  • Sample

    240229-hehq8ahd49

  • MD5

    ade3052e3919d19da2013ac46526cea3

  • SHA1

    dfdb2ae79644f79e4b1043dd281fd90f0f3da81b

  • SHA256

    a6dee1f12991dd7243ad1e11ade37e56cf5a166188aacac7a3f3ca2bb9b7e646

  • SHA512

    88f9217e3fcb592c5b1e368f171f383b06fe1cae962f5331ce72a237792cab27caa2d70c1846350984d8c456a6ff5323e3873e0999a60ea2c2c7ff5f25068964

  • SSDEEP

    6144:NCMXFht/e4271+HZ/pvkym/89bYEwPhCKvav:nXFD/Q7AIfFfvav

Score
10/10

Malware Config

Targets

    • Target

      Backdoor.Win32.Padodor.gen-a6dee1f12991dd7243ad1e11ade37e56cf5a166188aacac7a3f3ca2bb9b7e646

    • Size

      229KB

    • MD5

      ade3052e3919d19da2013ac46526cea3

    • SHA1

      dfdb2ae79644f79e4b1043dd281fd90f0f3da81b

    • SHA256

      a6dee1f12991dd7243ad1e11ade37e56cf5a166188aacac7a3f3ca2bb9b7e646

    • SHA512

      88f9217e3fcb592c5b1e368f171f383b06fe1cae962f5331ce72a237792cab27caa2d70c1846350984d8c456a6ff5323e3873e0999a60ea2c2c7ff5f25068964

    • SSDEEP

      6144:NCMXFht/e4271+HZ/pvkym/89bYEwPhCKvav:nXFD/Q7AIfFfvav

    Score
    10/10
    • Adds autorun key to be loaded by Explorer.exe on startup

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks