General

  • Target

    01f521fdd26f18148e1f6c1521e21686_JaffaCakes118

  • Size

    2.6MB

  • MD5

    01f521fdd26f18148e1f6c1521e21686

  • SHA1

    4acac78b4c0908538a84e1d743f5879b833fd64b

  • SHA256

    570be04f25f8d405c6d9ec238d12949292500106a58f8db5c1c53cae63939b4f

  • SHA512

    2c34d6b1c2ab73a6665c47f8f3984a7458b80a543a51cbeb6606cdc9420a969eb35b623e4f5f6da6c9d94fce6af93cd56d8e05953409160fdddd7e9637a1bfe1

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlY:86SIROiFJiwp0xlrlY

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 01f521fdd26f18148e1f6c1521e21686_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections