General

  • Target

    b0a1d8c3c5c6f36984299f16b43232231cef094d9eee28a71f8776b1a398b93b

  • Size

    91KB

  • MD5

    3535b9b4feb3dd9a6200f117693cf610

  • SHA1

    8e0471d479d5d122113cccba55f7a7a6a4338a54

  • SHA256

    b0a1d8c3c5c6f36984299f16b43232231cef094d9eee28a71f8776b1a398b93b

  • SHA512

    28a604ffc2ce5440e19b9fe853743839e6f86e18b39f595e38c3371087002e3b9528f24e5b61683c342febf76679781bd02070995dbf35c948be62a1a71e22cc

  • SSDEEP

    1536:49WiuMCQR4qTB0+sD2aH8SSt5ZJprevRjrI/4L4OocvTvfkzbo/5:aZbCoXsD2kEt7nivRz4OoXo/5

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://TelevisionHunter.com/pizda/gate.php

Attributes
  • payload_url

    http://damp.pro/edZ4au.exe

    http://zemljane.far.ru/N1X.exe

    http://parrocchiadiuopini.it/ZrktExKQ.exe

Signatures

Files

  • b0a1d8c3c5c6f36984299f16b43232231cef094d9eee28a71f8776b1a398b93b
    .exe windows x86

    d6cd9cecc12ba283fd2bf86a18ca964e


    Headers

    Imports

    Sections