General

  • Target

    024885959930437241cd532dba529335_JaffaCakes118

  • Size

    2.2MB

  • MD5

    024885959930437241cd532dba529335

  • SHA1

    c22e8f6b1ada57d0a391b466f55b4533f5a99496

  • SHA256

    725001c5379619960cc42fb8e6ca0fd56c9ca61b24d67e8b0126a38e7d76e7cb

  • SHA512

    50d218ce70d8ed900da78e2b74e1628b3db2d1fbc016477d085f7529f03b2a4af8e13d00d86fde4598206720f7fd35d34995e8f9a523fc913a96f65963952595

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZe:0UzeyQMS4DqodCnoe+iitjWwwi

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 024885959930437241cd532dba529335_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections