Overview

overview

10

Static

static

10

30f7a52f90...18.exe

windows7-x64

10

30f7a52f90...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    30f7a52f904d57980e7fd28965926b92_JaffaCakes118

  • Size

    2.6MB

  • MD5

    30f7a52f904d57980e7fd28965926b92

  • SHA1

    31b0ef461cc5643cd31eaa757da2b75d13c39bc7

  • SHA256

    a2dde715c56be12171f62d68f387203ba4458aab946d68c68fc243ce027547a2

  • SHA512

    621f2b8aa616c7db1bb9f16ec78e88fd14ab8ffc776cca9746382c5bb670840e96eac0791cea6babb7ad793c0c1c20a9c390f5bb8c407f5cbbe712901d189c62

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlP:86SIROiFJiwp0xlrlP

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 30f7a52f904d57980e7fd28965926b92_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections