General
-
Target
Backdoor.Win32.Padodor.SK.MTB-33cb883a88d80e7937bda1a0f2ecd7b3302abed220147ce5b88fdadb3570441dN
-
Size
94KB
-
Sample
240916-mv5m5stbpd
-
MD5
e308a44e1fa54a5e6a187a59ddb11ba0
-
SHA1
c698e51ad86dea1976ac7284544675075332c5f0
-
SHA256
33cb883a88d80e7937bda1a0f2ecd7b3302abed220147ce5b88fdadb3570441d
-
SHA512
46767a861a4f3a432930ed5751201a951146ad7a905cae6c2754eebd7f411c30394e4f252414e6204e37c684aff7f064955e05e84e949e20ccde326fdfd1f4e8
-
SSDEEP
1536:Pi/7lei/q62w32Bi0RYRWBJ4x/+sXMowLgeaURQDuRfRa9HprmRfRZ:PUUn62w318JQtwLPeDu5wkpv
Static task
static1
Behavioral task
behavioral1
Sample
Backdoor.Win32.Padodor.SK.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
Backdoor.Win32.Padodor.SK.exe
Resource
win10v2004-20240802-en
Malware Config
Extracted
berbew
http://viruslist.com/wcmd.txt
http://viruslist.com/ppslog.php
http://viruslist.com/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d
Targets
-
-
Target
Backdoor.Win32.Padodor.SK.MTB-33cb883a88d80e7937bda1a0f2ecd7b3302abed220147ce5b88fdadb3570441dN
-
Size
94KB
-
MD5
e308a44e1fa54a5e6a187a59ddb11ba0
-
SHA1
c698e51ad86dea1976ac7284544675075332c5f0
-
SHA256
33cb883a88d80e7937bda1a0f2ecd7b3302abed220147ce5b88fdadb3570441d
-
SHA512
46767a861a4f3a432930ed5751201a951146ad7a905cae6c2754eebd7f411c30394e4f252414e6204e37c684aff7f064955e05e84e949e20ccde326fdfd1f4e8
-
SSDEEP
1536:Pi/7lei/q62w32Bi0RYRWBJ4x/+sXMowLgeaURQDuRfRa9HprmRfRZ:PUUn62w318JQtwLPeDu5wkpv
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-