General

  • Target

    02133f7018aec5138131eef1e1ba901a_JaffaCakes118

  • Size

    2.2MB

  • MD5

    02133f7018aec5138131eef1e1ba901a

  • SHA1

    8d401c73e59385c949b5850caa4ff6fdf09bab2b

  • SHA256

    b7196bf1cdfe59865dcf859076426c9026873ec2a32919946588ab97a62c973f

  • SHA512

    ebbae936f9f77f7a630585bb00d66c2728d46811ab3e861ea747109611aead603e0fa7ec979ca3c279ff3b43fd0a9f4325bdac065056c4a7846cf24d49fe58e2

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZk:0UzeyQMS4DqodCnoe+iitjWwwo

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 02133f7018aec5138131eef1e1ba901a_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections