General

  • Target

    059a66ce1c5b8bbb68ce6319977a0417_JaffaCakes118

  • Size

    2.2MB

  • MD5

    059a66ce1c5b8bbb68ce6319977a0417

  • SHA1

    1267a1325ed4fd9412637e3044432b586570d3f8

  • SHA256

    60a468b9e754e03b542c0b3290fa0d002d54901f3086ac5d42bae9a4d80c457b

  • SHA512

    8021172356cdddd9e6455f2f37dc6c23b5e81fd53e68232410c28fc05babaac5fe44a060c019c879095a5459b280c113e2b5ed4501acc7cd8c9ada90eb7c0c93

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZi:0UzeyQMS4DqodCnoe+iitjWwwm

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 059a66ce1c5b8bbb68ce6319977a0417_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections