Overview

overview

10

Static

static

10

24696593c0...18.exe

windows7-x64

10

24696593c0...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    24696593c03025c8d52495fb25f95747_JaffaCakes118

  • Size

    2.6MB

  • MD5

    24696593c03025c8d52495fb25f95747

  • SHA1

    c898db73adcbf3e188c036f1f80476f7ed5effc6

  • SHA256

    ca7b8035768b60d80b2534b5e85d26079848c8c1324c823294592b299713a39d

  • SHA512

    d5be85518ed0fec38495f927d6d9c8c4088b8768b79c0227d3c1fb13dc121b359cf20ce418b1d18e3d7cd6a7cbe7a324fc92af7c81728f711c7ebdf33df98488

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlH:86SIROiFJiwp0xlrlH

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 24696593c03025c8d52495fb25f95747_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections