Backdoor[.]Win32[.]Padodor[.]gen-c83f4940f26bafd5c2382a9fd4d083977ab45f5de7866ea7d65f41ce2ab4351b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Backdoor.Win32.Padodor.gen-c83f4940f26bafd5c2382a9fd4d083977ab45f5de7866ea7d65f41ce2ab4351b
Size

128KB
MD5

c15dddfb231ac39588d6e7bc9be0f7ab
SHA1

289da464b93f9ae9dbd369d63c3dce746e97fe58
SHA256

c83f4940f26bafd5c2382a9fd4d083977ab45f5de7866ea7d65f41ce2ab4351b
SHA512

4e5ee58b10a3c27c7442040ab4009be086b1bb910f8054c3723186bfe4c616b8945f8f6c1f3d83d4bb69bf3345fbf77ad7fe74c1b512cd3a769545d516285a18
SSDEEP

3072:HvRYCqBGRtZmMCqaWWyZeAd7DxSvITW/cbFGS9n:0GraysARhCw9n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Backdoor.Win32.Padodor.gen-c83f4940f26bafd5c2382a9fd4d083977ab45f5de7866ea7d65f41ce2ab4351b

Files

Backdoor.Win32.Padodor.gen-c83f4940f26bafd5c2382a9fd4d083977ab45f5de7866ea7d65f41ce2ab4351b
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 122KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gfids
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ