General
-
Target
0cd4800e592fe66b6115c09f752d385fa05c336aa7609f42ad859d495d30cc4c
-
Size
82KB
-
Sample
221128-hag9wscd83
-
MD5
f06a955471472398fdb0b2ef4234eb65
-
SHA1
f457540a6a808ec4f2883518649f6838cd4c0218
-
SHA256
0cd4800e592fe66b6115c09f752d385fa05c336aa7609f42ad859d495d30cc4c
-
SHA512
176bddb5df31bf0085b599da2c64609f23ec3d56d852e300673bd2718a89df31ed284b412be17f4d901fd402b9c4277e3a753dcd1703c811db989f30cff0babc
-
SSDEEP
1536:raH4Hth9o0veEPwmYz83t2APlsQa9fT/kGkG3:raeh9o0WEImL2AeDkGkC
Static task
static1
Behavioral task
behavioral1
Sample
0cd4800e592fe66b6115c09f752d385fa05c336aa7609f42ad859d495d30cc4c.exe
Resource
win7-20221111-en
Malware Config
Extracted
pony
http://statlinkstore.com/seo.php
http://topstitchshop.com/blog/wp-feed.php
http://listimg.com/hotlink/imgs.php
http://listimg.com/hotlink/pics.php
Targets
-
-
Target
0cd4800e592fe66b6115c09f752d385fa05c336aa7609f42ad859d495d30cc4c
-
Size
82KB
-
MD5
f06a955471472398fdb0b2ef4234eb65
-
SHA1
f457540a6a808ec4f2883518649f6838cd4c0218
-
SHA256
0cd4800e592fe66b6115c09f752d385fa05c336aa7609f42ad859d495d30cc4c
-
SHA512
176bddb5df31bf0085b599da2c64609f23ec3d56d852e300673bd2718a89df31ed284b412be17f4d901fd402b9c4277e3a753dcd1703c811db989f30cff0babc
-
SSDEEP
1536:raH4Hth9o0veEPwmYz83t2APlsQa9fT/kGkG3:raeh9o0WEImL2AeDkGkC
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Accesses Microsoft Outlook accounts
-
Accesses Microsoft Outlook profiles
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-