General
-
Target
8a1f10fcc54e468e8ddf21f9fa77df9e529d70cbbcdcfd202ae4402900826854
-
Size
111KB
-
Sample
221201-b8q65agg7t
-
MD5
43fd5fbb5c24b8205a69459df7640803
-
SHA1
00ef49041751bbd0be99b63901cad1b79d1a6618
-
SHA256
8a1f10fcc54e468e8ddf21f9fa77df9e529d70cbbcdcfd202ae4402900826854
-
SHA512
d1b61f77036b83e85e8b49b63c84f1f2d52b3a81550d3969faf9059c27e0bca691cba6de4e9708c5d7c93b19e521900ac4f4a865417f3dc3b9560773b8bbef28
-
SSDEEP
3072:PTScjMpQpR1cnPPtuNHJxVC766/uMHsYtw:LjWQpRuPFyH0766/vxtw
Static task
static1
Behavioral task
behavioral1
Sample
8a1f10fcc54e468e8ddf21f9fa77df9e529d70cbbcdcfd202ae4402900826854.exe
Resource
win7-20221111-en
Malware Config
Extracted
pony
http://london-leather.com/forum/viewtopic.php
http://londonleatheronline.com/forum/viewtopic.php
http://londonleatherusa.com/forum/viewtopic.php
http://luggage-tv.com/forum/viewtopic.php
-
payload_url
http://ergodunamiki.gr/wAH7Dnij.exe
http://approvedphotonics.com/Zyu2.exe
http://67.192.137.234/xn93U.exe
http://mipais.org.gt/ZeqyfF.exe
Targets
-
-
Target
8a1f10fcc54e468e8ddf21f9fa77df9e529d70cbbcdcfd202ae4402900826854
-
Size
111KB
-
MD5
43fd5fbb5c24b8205a69459df7640803
-
SHA1
00ef49041751bbd0be99b63901cad1b79d1a6618
-
SHA256
8a1f10fcc54e468e8ddf21f9fa77df9e529d70cbbcdcfd202ae4402900826854
-
SHA512
d1b61f77036b83e85e8b49b63c84f1f2d52b3a81550d3969faf9059c27e0bca691cba6de4e9708c5d7c93b19e521900ac4f4a865417f3dc3b9560773b8bbef28
-
SSDEEP
3072:PTScjMpQpR1cnPPtuNHJxVC766/uMHsYtw:LjWQpRuPFyH0766/vxtw
-
Accesses Microsoft Outlook accounts
-
Accesses Microsoft Outlook profiles
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-