General
-
Target
cbd12c526355fb163afd8936f77a43ccbd2c4165e3ab391cb7374f08c83a2b65
-
Size
140KB
-
Sample
221001-zft93sfhfr
-
MD5
754e30ee4946d866a94a1e8fd99a3280
-
SHA1
cac32ede9fec3edca21ebe7b17d07eb908a902ef
-
SHA256
cbd12c526355fb163afd8936f77a43ccbd2c4165e3ab391cb7374f08c83a2b65
-
SHA512
f680fd69a062f7e68b80e954426f18e97547ae0750be6ae0fa63001fc526aa3b70bf89a4e7d22671eb6d9b918b58b7553f1942d0dc111bf9325cb3604683a7a6
-
SSDEEP
3072:MMdC3HqdOfU1LFEeWmow9yWIYypiKVCzNWuTPeQHTq49gZmdXOo:FWU1qvBw9AFnCJWuqcq4ZXp
Static task
static1
Behavioral task
behavioral1
Sample
cbd12c526355fb163afd8936f77a43ccbd2c4165e3ab391cb7374f08c83a2b65.exe
Resource
win7-20220812-en
Malware Config
Extracted
pony
http://fishery.co.in/Panel/Panel/gate.php
-
payload_url
http://fishery.co.in/Panel/Panel/specification.exe
Targets
-
-
Target
cbd12c526355fb163afd8936f77a43ccbd2c4165e3ab391cb7374f08c83a2b65
-
Size
140KB
-
MD5
754e30ee4946d866a94a1e8fd99a3280
-
SHA1
cac32ede9fec3edca21ebe7b17d07eb908a902ef
-
SHA256
cbd12c526355fb163afd8936f77a43ccbd2c4165e3ab391cb7374f08c83a2b65
-
SHA512
f680fd69a062f7e68b80e954426f18e97547ae0750be6ae0fa63001fc526aa3b70bf89a4e7d22671eb6d9b918b58b7553f1942d0dc111bf9325cb3604683a7a6
-
SSDEEP
3072:MMdC3HqdOfU1LFEeWmow9yWIYypiKVCzNWuTPeQHTq49gZmdXOo:FWU1qvBw9AFnCJWuqcq4ZXp
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Accesses Microsoft Outlook accounts
-
Accesses Microsoft Outlook profiles
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-