General
-
Target
05aa77273fbe5efb245560f519cddded.bin.bin
-
Size
98KB
-
Sample
230501-sc15wshh91
-
MD5
1fa6519caf85f37263c87585948ff349
-
SHA1
a36a27345c89f767de904f70ad7e87c1a6804b4c
-
SHA256
2134b6ec8c8c2be521cc27f829608d56a4bf79857484d58da98dfd886782f196
-
SHA512
705e59fed91e2e3df2d5dcc06b53f69b74a11a4079d160bc193f35afb5c747cc9d07d502f2fe758505bbd21ce3b4a05175a335323cbceb658d415b430dfb2b6c
-
SSDEEP
3072:nIToefDV5RkyfYwpnbyPe7XWxu8Hr/J3R0:nIToef55yorby+XWxFa
Static task
static1
Behavioral task
behavioral1
Sample
f3b60b9fb81de5df1dad130e2f384654f4cfc532bfe38f9719b6e43647334dc4.exe
Resource
win7-20230220-en
Malware Config
Extracted
pony
http://abes.net/forum/viewtopic.php
http://abesburger.com/forum/viewtopic.php
http://abescasualgrill.com/forum/viewtopic.php
http://abescasualgrill.info/forum/viewtopic.php
-
payload_url
http://198.101.252.154/Hq6Te.exe
http://cherishca.com/YJb7m.exe
http://184.168.111.184/w1aN.exe
http://ftp.petrasolutions.com/yETP3UsR.exe
Targets
-
-
Target
f3b60b9fb81de5df1dad130e2f384654f4cfc532bfe38f9719b6e43647334dc4.exe
-
Size
114KB
-
MD5
05aa77273fbe5efb245560f519cddded
-
SHA1
15ad11fb49503dbd6c0d2f793532dab50a9d228c
-
SHA256
f3b60b9fb81de5df1dad130e2f384654f4cfc532bfe38f9719b6e43647334dc4
-
SHA512
627292a4a6dc29757023900f8cc3ff3fd103b36b4c913d764d58384e1d9358026d3bd7e0bc1be85f933f44740345c1d1c7190ce6dd46084b36b77472bbbe41ba
-
SSDEEP
3072:eaGd0JWGpj28eQ/KR2i6hPPGf9fdLi7Ulq0SN:Y0JWGlpeQiR2fPSfdNlq00
-
Accesses Microsoft Outlook accounts
-
Accesses Microsoft Outlook profiles
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-