General

  • Target

    00f9d6d5224c25e77186a9a82187ef8d_JaffaCakes118

  • Size

    2.2MB

  • MD5

    00f9d6d5224c25e77186a9a82187ef8d

  • SHA1

    62ae0ce90d299cb9861b2e8599f3668390364305

  • SHA256

    42a86257b661bc5cd0558642e7ac016ac2b9e6db4b1c591813a64d4f6e21b867

  • SHA512

    159b768d092566becc00b7135c0330c060ee3fb115925bae40334a31893412f76e5d73c09e3da682122c6abed9c143de411c4073a7f64738923db751f8dfeb5b

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZ0:0UzeyQMS4DqodCnoe+iitjWwwI

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 00f9d6d5224c25e77186a9a82187ef8d_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections