Overview

overview

10

Static

static

10

2815862056...18.exe

windows7-x64

10

2815862056...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    281586205636f14d5f5040cbf8df444d_JaffaCakes118

  • Size

    2.6MB

  • MD5

    281586205636f14d5f5040cbf8df444d

  • SHA1

    2c791e77765b2c0ddadb616891a801ac3d1a64d1

  • SHA256

    d01131728c04aafd3406798f7da6a22b3bd34ee093ffa632fd6e349b1690dd5f

  • SHA512

    02207121e0f8531bbe0fb347fff81bd47d16e9330519a1f30a3f4ba32f3de2583f3decd81b40f4d92ca56edae8063888b4bddb992eef76c0206b911fffbd626a

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlh:86SIROiFJiwp0xlrlh

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 281586205636f14d5f5040cbf8df444d_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections