General
-
Target
be347717ae013115cdc31c2418580a5c614e96ac490cd120e580f44daf1c00e3
-
Size
113KB
-
Sample
221203-gt1d5sba34
-
MD5
2ac2446db59c30a05b32f0677e487ab0
-
SHA1
5d34a14c6b72fa7c580311b13a9dc5f5f595ee47
-
SHA256
be347717ae013115cdc31c2418580a5c614e96ac490cd120e580f44daf1c00e3
-
SHA512
4f6e57e0f9a22362b965d9311bfb9cac89eade6cfb2ef02a5cced42c0edabcf69f4d8c541a63e305f1c96937991228f0fbe8f2d216910b2357ec2bf8acc34b49
-
SSDEEP
3072:BbWxwy3FDk3F3g4MOaQFRVfx8p/TmeOjyL:y1Ig4MOR9S/DOjy
Static task
static1
Behavioral task
behavioral1
Sample
be347717ae013115cdc31c2418580a5c614e96ac490cd120e580f44daf1c00e3.exe
Resource
win7-20221111-en
Malware Config
Extracted
pony
http://journeyacrossthesky.org/forum/viewtopic.php
http://luckyemily.com/forum/viewtopic.php
http://oshaughnessyfam.com/forum/viewtopic.php
http://actorbell.com/forum/viewtopic.php
-
payload_url
http://imagesuperspot.com/6ptP.exe
http://1954f7e942e67bc1.lolipop.jp/d2z.exe
http://ropapublicitaria.es/5VWumA1.exe
http://colombiantravelservices.com/ucUMruv.exe
Targets
-
-
Target
be347717ae013115cdc31c2418580a5c614e96ac490cd120e580f44daf1c00e3
-
Size
113KB
-
MD5
2ac2446db59c30a05b32f0677e487ab0
-
SHA1
5d34a14c6b72fa7c580311b13a9dc5f5f595ee47
-
SHA256
be347717ae013115cdc31c2418580a5c614e96ac490cd120e580f44daf1c00e3
-
SHA512
4f6e57e0f9a22362b965d9311bfb9cac89eade6cfb2ef02a5cced42c0edabcf69f4d8c541a63e305f1c96937991228f0fbe8f2d216910b2357ec2bf8acc34b49
-
SSDEEP
3072:BbWxwy3FDk3F3g4MOaQFRVfx8p/TmeOjyL:y1Ig4MOR9S/DOjy
-
Accesses Microsoft Outlook accounts
-
Accesses Microsoft Outlook profiles
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-