General
-
Target
1bf9f2ba608fddd01e07cbcd9dd9faeb51ba56acd6664932920f3e52231ce972
-
Size
596KB
-
Sample
221126-jkh5lsfg5s
-
MD5
b09a08656becc46cf4f0547926f90cf8
-
SHA1
0b6f000fad78f9d9082344c724c0a2637046080e
-
SHA256
1bf9f2ba608fddd01e07cbcd9dd9faeb51ba56acd6664932920f3e52231ce972
-
SHA512
cf77f7ee2720836db3f9480d244e5f3b9ed38e5ff981ae1b25c58e031571a6681886e5665c66b5303baf5880f9b75e3267e6a323c5cd18e0849bcb731bbf52de
-
SSDEEP
12288:ko0ZjcnNr3Sh4Ybgob0vSZcVm/IMnfiNAKrq4HMklp8W6Q1F:kPZjcnxY4eIvFMIQ6Pr7n
Static task
static1
Behavioral task
behavioral1
Sample
1bf9f2ba608fddd01e07cbcd9dd9faeb51ba56acd6664932920f3e52231ce972.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
1bf9f2ba608fddd01e07cbcd9dd9faeb51ba56acd6664932920f3e52231ce972.exe
Resource
win10v2004-20220812-en
Malware Config
Extracted
pony
http://orangeisabitch.net16.net/gate.php
Targets
-
-
Target
1bf9f2ba608fddd01e07cbcd9dd9faeb51ba56acd6664932920f3e52231ce972
-
Size
596KB
-
MD5
b09a08656becc46cf4f0547926f90cf8
-
SHA1
0b6f000fad78f9d9082344c724c0a2637046080e
-
SHA256
1bf9f2ba608fddd01e07cbcd9dd9faeb51ba56acd6664932920f3e52231ce972
-
SHA512
cf77f7ee2720836db3f9480d244e5f3b9ed38e5ff981ae1b25c58e031571a6681886e5665c66b5303baf5880f9b75e3267e6a323c5cd18e0849bcb731bbf52de
-
SSDEEP
12288:ko0ZjcnNr3Sh4Ybgob0vSZcVm/IMnfiNAKrq4HMklp8W6Q1F:kPZjcnxY4eIvFMIQ6Pr7n
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies file permissions
-
Accesses Microsoft Outlook accounts
-
Accesses Microsoft Outlook profiles
-
Suspicious use of SetThreadContext
-