Overview

overview

10

Static

static

10

25a052fadb...18.exe

windows7-x64

10

25a052fadb...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    25a052fadbcba4eb522ee5f86712adc7_JaffaCakes118

  • Size

    2.6MB

  • MD5

    25a052fadbcba4eb522ee5f86712adc7

  • SHA1

    c57012bd412a1cfb30bc9e47d6510e6f9f62c3dd

  • SHA256

    612010f70502409a30c6a3cd2b8069accf368dcc080d78a91a930b15e50c5ecf

  • SHA512

    f66d23102b51b7772950ca47ecb7275727f60548cae9121c40ea3a45c9bacf38f7289f501999cace1401ebec18663c3d3d2018f230eea2d07774778b9b770ebe

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlq:86SIROiFJiwp0xlrlq

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 25a052fadbcba4eb522ee5f86712adc7_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections