Overview

overview

10

Static

static

10

0499863e7d...18.exe

windows7-x64

10

0499863e7d...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0499863e7d40215201bceb55d56fbd78_JaffaCakes118

  • Size

    2.6MB

  • MD5

    0499863e7d40215201bceb55d56fbd78

  • SHA1

    f59816f429c783ca1cb99c3222e67a588da578ca

  • SHA256

    925a5503d3e6d4c34b4e932ae12d32f13d47fa7570fe125431c628dce8887928

  • SHA512

    39426e596a9ff3b94f9d4d7c5e76ede6581a9e1a0b823ac4ae38ec3f74cb6e867b61b8d9b37c3360a9ed75e9a963e65b4679c2d0883ba8ec1f343a3d2556359d

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlo:86SIROiFJiwp0xlrlo

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0499863e7d40215201bceb55d56fbd78_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections