Overview

overview

10

Static

static

10

3C5FA813A7...E7.exe

windows7_x64

10

3C5FA813A7...E7.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3C5FA813A7815B81E5990D15442D3DE7.exe

  • Size

    105KB

  • MD5

    3c5fa813a7815b81e5990d15442d3de7

  • SHA1

    280671ce7c7b215fcf59e089908e98730eb17cab

  • SHA256

    4131ccbef9251524c0b1f72439733b31d69cb1f2b1849fdc87a5b04fce0a3d82

  • SHA512

    03a9f4fdadd9ce9a7b822fbb48c4c15b475b2c8495dd8978bf155cc8323b5075f25b5f30cce75ac1d55229ee6fe2ff34eec536a35c4015ecd461704433099936

Score
10/10
upxpony

Malware Config

Extracted

Family

pony

C2

http://afobal.cl/mine/gate.php

Attributes
  • payload_url

    http://myp0nysite.ru/shit.exe

Signatures

  • Pony family
    pony
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Files

  • 3C5FA813A7815B81E5990D15442D3DE7.exe
    .exe windows x86