pony | ad23a78818a1d2dac4666f1eead3c0054cd744fa4ea18a6b84a278e62bed1633 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ad23a78818a1d2dac4666f1eead3c0054cd744fa4ea18a6b84a278e62bed1633
Size

128KB
Sample

221201-ybnfasdf72
MD5

d7ba3dc662c35db5e74bcc471d61138b
SHA1

73cf1fad42a927b7eb91e1c412941a65c9722a43
SHA256

ad23a78818a1d2dac4666f1eead3c0054cd744fa4ea18a6b84a278e62bed1633
SHA512

ff58165c08931fccf3d72216fea28f3e4f5aecc37d0ce74a7a3dff0a9ca65ef48d254f6a6bf0527d469eda62e2da115c235864b9c1c63f1a3420abc979bdb1c6
SSDEEP

3072:fLv7moSJDwz0ZL+/bjgUzLwZ0bCf8lRbpaJIP6L0k:jvuwzaLOo4Y0bf1auCL0

Score

10^/10

pony rat spyware stealer

Malware Config

Extracted

Family

pony

C2

http://67.215.225.205:8080/forum/viewtopic.php

http://122.201.102.69:8080/forum/viewtopic.php

Attributes

payload_url
http://matrix-revital.de/fs7o.exe

http://realitycoaching.es/qSjLuFL.exe

http://cuisineraveclerable.ca/8d6.exe

Targets

- Target
  
  ad23a78818a1d2dac4666f1eead3c0054cd744fa4ea18a6b84a278e62bed1633
- Size
  
  128KB
- MD5
  
  d7ba3dc662c35db5e74bcc471d61138b
- SHA1
  
  73cf1fad42a927b7eb91e1c412941a65c9722a43
- SHA256
  
  ad23a78818a1d2dac4666f1eead3c0054cd744fa4ea18a6b84a278e62bed1633
- SHA512
  
  ff58165c08931fccf3d72216fea28f3e4f5aecc37d0ce74a7a3dff0a9ca65ef48d254f6a6bf0527d469eda62e2da115c235864b9c1c63f1a3420abc979bdb1c6
- SSDEEP
  
  3072:fLv7moSJDwz0ZL+/bjgUzLwZ0bCf8lRbpaJIP6L0k:jvuwzaLOo4Y0bf1auCL0
Score

10^/10

pony rat spyware stealer
- Pony,Fareit
  Pony is a Remote Access Trojan application that steals information.
  rat spyware stealer pony
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

ponyratspywarestealer

behavioral2

ponyratspywarestealer