General

  • Target

    00e72882dd63ac7d419138f90839a367_JaffaCakes118

  • Size

    2.2MB

  • MD5

    00e72882dd63ac7d419138f90839a367

  • SHA1

    3c5cfd6afe4ac4b72bab8f049b05496f6386a864

  • SHA256

    4ef15d8629df97666ba0a355aadbad8c96b6b06a9b020abd57e7050d9654b821

  • SHA512

    71aba7a81dc76535caf4e3a674d8b30fcf3745239a2bda5137f48469f67d19ae2911f56e3fab3fd40f9c20fa214513c4c65ec434bc00442538214052b0848774

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZ3:0UzeyQMS4DqodCnoe+iitjWwwT

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 00e72882dd63ac7d419138f90839a367_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections