General

  • Target

    044f1beba281129bb335c7d87311a468_JaffaCakes118

  • Size

    2.2MB

  • MD5

    044f1beba281129bb335c7d87311a468

  • SHA1

    ea8cef33799449e83c4af412dc52205b9b86a97f

  • SHA256

    961f04770851408277e71fb089899c210c74d6a768aaf21f9ba23175fd0e8ef1

  • SHA512

    ba10b8a2f0d41eefd1de0cd61ee73c9e111565374c55b8997d6e0f308bcc9a90f25c4bcf44da32949da21dd512c57bb6eac7166a388db515c9df4c9ad754eaed

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZu:0UzeyQMS4DqodCnoe+iitjWwwi

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 044f1beba281129bb335c7d87311a468_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections