General
-
Target
2768-13-0x0000000000400000-0x000000000041C000-memory.dmp
-
Size
112KB
-
MD5
ad0cebc5a419aa91fe2bce0b2133d222
-
SHA1
210d61197611d4d0af700084b82feec7443f176a
-
SHA256
cb7f40ecd3f6186e1cdc65533431f290ac9f45049e92c1dc8b6422f151c89dc8
-
SHA512
aca2bebae1cb36248c7d49e2d03330b566fdd1355798749397ca4b1225d5eb2b76b2187fed168638e86a7c2b799dd38d6020480ce3954d25f8820efbc9002208
-
SSDEEP
1536:m8oOwTixqT+4tvgJFVLTOLwnyhqCx/BHb+O9ltEofNYTvPEKlkzmrUm:OOd/3lOMyhiOTUEKprU
Score
10/10
Malware Config
Extracted
Family
pony
C2
http://nsslawcollege.org/look/gate.php
Signatures
-
Pony family
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
2768-13-0x0000000000400000-0x000000000041C000-memory.dmp
Headers
Sections