Backdoor[.]Win32[.]Padodor[.]SK[.]MTB-09a1b8aa3b844ea7cbc08c26cf1f585e88671ac66382e6bfec238c57ee37fcccN | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Backdoor.Win32.Padodor.SK.MTB-09a1b8aa3b844ea7cbc08c26cf1f585e88671ac66382e6bfec238c57ee37fcccN
Size

80KB
MD5

4a8965348b63a72c13fabd1447819350
SHA1

799929f544d0e6e5926f77516de19d87d37c56ef
SHA256

09a1b8aa3b844ea7cbc08c26cf1f585e88671ac66382e6bfec238c57ee37fccc
SHA512

8c7c93359d5e426172f88aadde46c020caec39f6981cc9e58879bc643348e34e95e658a379791f1798b07ff6598ebfe7a7395a2c2c09d1d7f4305db41dde94b3
SSDEEP

1536:uJzZOPXM2YQXEtvaqVPUN35yojlsUpWWoP+o8FB/EFeJuqnhCN:qIP+QXsVsNJrsUwWoA/EFeJLCN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Backdoor.Win32.Padodor.SK.MTB-09a1b8aa3b844ea7cbc08c26cf1f585e88671ac66382e6bfec238c57ee37fcccN

Files

Backdoor.Win32.Padodor.SK.MTB-09a1b8aa3b844ea7cbc08c26cf1f585e88671ac66382e6bfec238c57ee37fcccN
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 122KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.flh
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ