General
-
Target
c94c03739c853aed958fd7d0b19cd2b01278946b80b72c440f9248e3b6a41400
-
Size
112KB
-
Sample
221203-fqb2psga38
-
MD5
071267298ad8e113259e91881cdb48e0
-
SHA1
1bc1e82cb2ad86332ccc4e1c588fd1cded793c38
-
SHA256
c94c03739c853aed958fd7d0b19cd2b01278946b80b72c440f9248e3b6a41400
-
SHA512
0de6ba4471bfb6e03788aeca151c73d3f1e1c152f8befa1ff1be9463b91a4354fd55d842919f3ee81083b81ffbba1379841b4e8b61e61aca95c083632d0a4d26
-
SSDEEP
3072:osRXwtkHJ+7/ldPTujKQ4MweS+8X7DGsERZiip:os1tJG/TveS/7DGsERQa
Static task
static1
Behavioral task
behavioral1
Sample
c94c03739c853aed958fd7d0b19cd2b01278946b80b72c440f9248e3b6a41400.exe
Resource
win7-20220812-en
Malware Config
Extracted
pony
http://kidswalla.com/forum/viewtopic.php
http://kitchenwalla.com/forum/viewtopic.php
http://london-leather.com/forum/viewtopic.php
http://londonleatheronline.com/forum/viewtopic.php
-
payload_url
http://imagesuperspot.com/6ptP.exe
http://1954f7e942e67bc1.lolipop.jp/d2z.exe
http://renner-martin.at/M630.exe
http://colombiantravelservices.com/ucUMruv.exe
Targets
-
-
Target
c94c03739c853aed958fd7d0b19cd2b01278946b80b72c440f9248e3b6a41400
-
Size
112KB
-
MD5
071267298ad8e113259e91881cdb48e0
-
SHA1
1bc1e82cb2ad86332ccc4e1c588fd1cded793c38
-
SHA256
c94c03739c853aed958fd7d0b19cd2b01278946b80b72c440f9248e3b6a41400
-
SHA512
0de6ba4471bfb6e03788aeca151c73d3f1e1c152f8befa1ff1be9463b91a4354fd55d842919f3ee81083b81ffbba1379841b4e8b61e61aca95c083632d0a4d26
-
SSDEEP
3072:osRXwtkHJ+7/ldPTujKQ4MweS+8X7DGsERZiip:os1tJG/TveS/7DGsERQa
-
Accesses Microsoft Outlook accounts
-
Accesses Microsoft Outlook profiles
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-