Overview

overview

10

Static

static

10

10419b62a1...18.exe

windows7-x64

10

10419b62a1...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    10419b62a1d5ac34be6a00488dcb11c3_JaffaCakes118

  • Size

    90KB

  • MD5

    10419b62a1d5ac34be6a00488dcb11c3

  • SHA1

    8b4dc7432397b783b089654f2740af80593a7274

  • SHA256

    da5f5573e7020008fe07f1812ef42436015f5afa7236a03cb92d8f96274a5b8b

  • SHA512

    9aaad2bd2fa4ac94cefff15e8fedaa0513d47abc69f099817950b7b6d052a86ff2a53e20f669d48b62ac757110fa6ebf9b89460b2e0ccb10259a7cb854a0d9b3

  • SSDEEP

    1536:UnSncgyGqTDRXmGcwSCfZDalZNg9tvo0iO3AX4ApTvMEIWkzmt2l:2SnMuGc/CfZDap6COU45EIGtm

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://christojati.com/panel/gate.php

Attributes
  • payload_url

    http://christojati.com/panel/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 10419b62a1d5ac34be6a00488dcb11c3_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections