Backdoor[.]Win32[.]Padodor[.]SK[.]MTB-331814aefb1997f03f99cca718f9670ac5a5fd65c2219a391705a7e4cc9ac64fN

Sharing

Copy URL Twitter E-mail

General

Target

Backdoor.Win32.Padodor.SK.MTB-331814aefb1997f03f99cca718f9670ac5a5fd65c2219a391705a7e4cc9ac64fN
Size

95KB
MD5

f3d18e0e0670db2c5489286cab35ad40
SHA1

8eefd5d75b7b7dd02d82500c6e9bce1af0a34068
SHA256

331814aefb1997f03f99cca718f9670ac5a5fd65c2219a391705a7e4cc9ac64f
SHA512

e6bbe9f67793a38d8499429f20dbefb3566305160ea84a1f3e73af405304e882b7d17891ecef2e6834327a0fe124f39179a8d02deafcca15c51950b387903627
SSDEEP

1536:30K5QCEh8giqbWf0j4pyUaTN505/TizCN/gRQr7RVRoRch1dROrwpOudRirVtFs+:3dahdys0h84/2O9gefTWM1dQrTOwZtF/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Backdoor.Win32.Padodor.SK.MTB-331814aefb1997f03f99cca718f9670ac5a5fd65c2219a391705a7e4cc9ac64fN

Files

Backdoor.Win32.Padodor.SK.MTB-331814aefb1997f03f99cca718f9670ac5a5fd65c2219a391705a7e4cc9ac64fN
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.reloc
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 122KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ajelhf
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.didat
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

.reloc Size: 45KB - Virtual size: 45KB

.rsrc Size: - Virtual size: 122KB

.data Size: 12KB - Virtual size: 12KB

.reloc Size: 4KB - Virtual size: 4KB

.ajelhf Size: 512B - Virtual size: 4KB

.didat Size: 512B - Virtual size: 4KB

.idata Size: 512B - Virtual size: 4KB

.idata Size: 1024B - Virtual size: 4KB

.text Size: 3KB - Virtual size: 4KB

.idata Size: 512B - Virtual size: 4KB

.text Size: 6KB - Virtual size: 8KB

.idata Size: 512B - Virtual size: 4KB

.text Size: 6KB - Virtual size: 8KB

.reloc Size: 9KB - Virtual size: 12KB

.reloc
Size: 45KB - Virtual size: 45KB

.rsrc
Size: - Virtual size: 122KB

.data
Size: 12KB - Virtual size: 12KB

.reloc
Size: 4KB - Virtual size: 4KB

.ajelhf
Size: 512B - Virtual size: 4KB

.didat
Size: 512B - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

.idata
Size: 1024B - Virtual size: 4KB

.text
Size: 3KB - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

.text
Size: 6KB - Virtual size: 8KB

.idata
Size: 512B - Virtual size: 4KB

.text
Size: 6KB - Virtual size: 8KB

.reloc
Size: 9KB - Virtual size: 12KB