General

  • Target

    0012cc0c6dff3ea2fbfeb3692a8327bc_JaffaCakes118

  • Size

    2.2MB

  • MD5

    0012cc0c6dff3ea2fbfeb3692a8327bc

  • SHA1

    232c92fb21ccc11e0a0f3fa9a81c2bbd5edaf779

  • SHA256

    51e48841b9a05f9ec8f2945962f0b8ca10b55bf6b7609ad6e862dcc624abe425

  • SHA512

    233e69a11b5965edbb852c9822efa871efb741a9e375910ca19112c41f37925e8eb0809f4582fa45a379d82e0abf318c123a829972ead9134f86335996986daa

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZz:0UzeyQMS4DqodCnoe+iitjWwwn

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0012cc0c6dff3ea2fbfeb3692a8327bc_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections