Overview

overview

10

Static

static

10

1992-60-0x...ry.exe

windows7-x64

1

1992-60-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1992-60-0x0000000000400000-0x0000000000419000-memory.dmp

  • Size

    100KB

  • Sample

    230503-r7t5dsgh6t

  • MD5

    14da8590d38053047743d7b16f388820

  • SHA1

    5d25df37aa06d03b67b0cfd2bb58243eb4de50ef

  • SHA256

    b0e6a6398fbd802c9a52dd579df3526b52494ad8c1a4036d9f83806f3019b7be

  • SHA512

    09f7e144f312dfaec0b6574144330ed8138749b6ada246d9e35f15fca8150b698971502ea0c9f3c0ca1074f14989f0f1a34911cbaf9b40f2ef5a54de686c0f5b

  • SSDEEP

    1536:6lCss5qqTSo2PyR4ZGgFlTum1kaSO5o0QTvSc9JEQIkzZtqU:0CzuyyZdFxIO5bcHEQDtqU

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://67.215.225.205:8080/ponyd/gate.php

http://74.91.117.190/ponyd/gate.php
Attributes
  • payload_url

    http://res.streetammo.com/SwoBrJYg/oEbZ.exe

    http://abo.gnumerica.org/oSZx1Nko/eZPX.exe

Targets

    • Target

      1992-60-0x0000000000400000-0x0000000000419000-memory.dmp

    • Size

      100KB

    • MD5

      14da8590d38053047743d7b16f388820

    • SHA1

      5d25df37aa06d03b67b0cfd2bb58243eb4de50ef

    • SHA256

      b0e6a6398fbd802c9a52dd579df3526b52494ad8c1a4036d9f83806f3019b7be

    • SHA512

      09f7e144f312dfaec0b6574144330ed8138749b6ada246d9e35f15fca8150b698971502ea0c9f3c0ca1074f14989f0f1a34911cbaf9b40f2ef5a54de686c0f5b

    • SSDEEP

      1536:6lCss5qqTSo2PyR4ZGgFlTum1kaSO5o0QTvSc9JEQIkzZtqU:0CzuyyZdFxIO5bcHEQDtqU

    Score
    3/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks