General

  • Target

    288e12f90226ad47280e0822138c0d96_JaffaCakes118

  • Size

    2.2MB

  • MD5

    288e12f90226ad47280e0822138c0d96

  • SHA1

    28365780c6f9adeae6b9ed6a5c9839763c50cd0e

  • SHA256

    3f96aa6d51e68dbb8b11f9a2dace2e107cf39d8baa1cae5a7c23e2a8667d4529

  • SHA512

    7c8c3a1ce40c58c331222b474a5e10238df52ac6a66b43413dc0215d7157d22890f7533b49b385889cb58a31b3691e60742f3cf519db7fb7ae7f2f6bd122a110

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZ9:0UzeyQMS4DqodCnoe+iitjWww5

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 288e12f90226ad47280e0822138c0d96_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections