General

  • Target

    007c34ba8f405ebca7389a7e9c911b91_JaffaCakes118

  • Size

    2.2MB

  • MD5

    007c34ba8f405ebca7389a7e9c911b91

  • SHA1

    bb968484cb75940e84e80cfdb7b751d669190ed2

  • SHA256

    0bc6da2c6448f0dd8c7d2b7cf8e17ab81f3d81d8830d32d499d3ccf24262ca3b

  • SHA512

    876485294a269d4835d990c6ae79e661b2879ecc9a1b603fa1d61687c2c0d063d5f54c77af49770fbf11ebdea4a51d7f664843065edbaa2118383930c2ef36cd

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZV:0UzeyQMS4DqodCnoe+iitjWwwJ

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 007c34ba8f405ebca7389a7e9c911b91_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections