Overview

overview

10

Static

static

10

1352-135-0...ry.exe

windows7-x64

1

1352-135-0...ry.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    1352-135-0x0000000000400000-0x0000000000419000-memory.dmp

  • Size

    100KB

  • MD5

    ea640eedd895ef6d5898307d9729e771

  • SHA1

    c7ae163b943132e11ff12eacba7d9d5dc3c6a132

  • SHA256

    c0eec563b38302cab30ac6a3a791d07607f5ed7a158fe8fd6a86a0734673d1fa

  • SHA512

    e27ea181e4f2aa6eb211d2d9166bc05a410d21c6d2428945162528517d2aa6e47f2d59cc4c67fc20bf5657c9cb6b4e864530b22f2dd97a743656d4854b9b673b

  • SSDEEP

    1536:UnSn0nSncgyGqTDRXmGcwSCfZDalZNg9tvo0iO3AX4ApTvMEI2kzmtO:2SnWSnMuGc/CfZDap6COU45EImtO

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://fourwaysgroup.com/ai88/panel/gate.php

Attributes
  • payload_url

    http://fourwaysgroup.com/ai88/panel/ai88.exe

Signatures

Files

  • 1352-135-0x0000000000400000-0x0000000000419000-memory.dmp
    .exe windows x86


    Headers

    Sections