Overview

overview

10

Static

static

10

063d21bd9a...18.exe

windows7-x64

10

063d21bd9a...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    063d21bd9a5036a89712e570acdfa8f1_JaffaCakes118

  • Size

    2.6MB

  • MD5

    063d21bd9a5036a89712e570acdfa8f1

  • SHA1

    a2309bb7288237f2ddfe3a624ad9204af4ca525f

  • SHA256

    dfeeaf9486b0f80c35a6c58b323aca1f9c4912da4be68dcbaedee60ff0b8e1c2

  • SHA512

    7f38d739059de02a4cd33aed7e05d9be1f80ad063b3437156309b8f4553f7358e849609db92683bdd0be3c21c8657165a8395a0de9a8ef85ec4e84bbcd3f31ba

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlh:86SIROiFJiwp0xlrlh

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 063d21bd9a5036a89712e570acdfa8f1_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections