General
-
Target
3C5FA813A7815B81E5990D15442D3DE7.exe
-
Size
105KB
-
Sample
210726-scs5a3ztze
-
MD5
3c5fa813a7815b81e5990d15442d3de7
-
SHA1
280671ce7c7b215fcf59e089908e98730eb17cab
-
SHA256
4131ccbef9251524c0b1f72439733b31d69cb1f2b1849fdc87a5b04fce0a3d82
-
SHA512
03a9f4fdadd9ce9a7b822fbb48c4c15b475b2c8495dd8978bf155cc8323b5075f25b5f30cce75ac1d55229ee6fe2ff34eec536a35c4015ecd461704433099936
Behavioral task
behavioral1
Sample
3C5FA813A7815B81E5990D15442D3DE7.exe
Resource
win7v20210408
Behavioral task
behavioral2
Sample
3C5FA813A7815B81E5990D15442D3DE7.exe
Resource
win10v20210410
Malware Config
Extracted
pony
http://afobal.cl/mine/gate.php
-
payload_url
http://myp0nysite.ru/shit.exe
Targets
-
-
Target
3C5FA813A7815B81E5990D15442D3DE7.exe
-
Size
105KB
-
MD5
3c5fa813a7815b81e5990d15442d3de7
-
SHA1
280671ce7c7b215fcf59e089908e98730eb17cab
-
SHA256
4131ccbef9251524c0b1f72439733b31d69cb1f2b1849fdc87a5b04fce0a3d82
-
SHA512
03a9f4fdadd9ce9a7b822fbb48c4c15b475b2c8495dd8978bf155cc8323b5075f25b5f30cce75ac1d55229ee6fe2ff34eec536a35c4015ecd461704433099936
-
Deletes itself
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-