General
-
Target
e99710c17a74aaea70626e74b555ece08c52e7a7e15092d8c89cd6fd7a22d1b6
-
Size
741KB
-
Sample
221125-ykj48seb6x
-
MD5
1f46f001148674dd22c171316bdb2404
-
SHA1
07de6d7fe291c97de20e6baf482a0d7bd3345d0d
-
SHA256
e99710c17a74aaea70626e74b555ece08c52e7a7e15092d8c89cd6fd7a22d1b6
-
SHA512
e9ea87bc3be5e5401793e99db3aede8ce469ccfe200bb80011a2fae8c0c6c733f32185a44c7283ccdbdf62121197631610f46b1961bace55cd2a2d24333664ef
-
SSDEEP
12288:ahkDgouVA2nxKkorvdRgQriDwOIxmxiZnYQE7PJcE4aWO5rRb:aRmJkcoQricOIQxiZY1iaWE
Static task
static1
Behavioral task
behavioral1
Sample
e99710c17a74aaea70626e74b555ece08c52e7a7e15092d8c89cd6fd7a22d1b6.exe
Resource
win7-20221111-en
Malware Config
Extracted
pony
http://centralass.tk/Panel/gate.php
Targets
-
-
Target
e99710c17a74aaea70626e74b555ece08c52e7a7e15092d8c89cd6fd7a22d1b6
-
Size
741KB
-
MD5
1f46f001148674dd22c171316bdb2404
-
SHA1
07de6d7fe291c97de20e6baf482a0d7bd3345d0d
-
SHA256
e99710c17a74aaea70626e74b555ece08c52e7a7e15092d8c89cd6fd7a22d1b6
-
SHA512
e9ea87bc3be5e5401793e99db3aede8ce469ccfe200bb80011a2fae8c0c6c733f32185a44c7283ccdbdf62121197631610f46b1961bace55cd2a2d24333664ef
-
SSDEEP
12288:ahkDgouVA2nxKkorvdRgQriDwOIxmxiZnYQE7PJcE4aWO5rRb:aRmJkcoQricOIQxiZY1iaWE
-
Accesses Microsoft Outlook accounts
-
Accesses Microsoft Outlook profiles
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-