Overview

overview

10

Static

static

10

4115a6dc9b...18.exe

windows7-x64

10

4115a6dc9b...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    4115a6dc9babe8f161faa6ceb48474dd_JaffaCakes118

  • Size

    2.6MB

  • MD5

    4115a6dc9babe8f161faa6ceb48474dd

  • SHA1

    25ef69864f3c367b9675b9e81ed99bc4983f73b4

  • SHA256

    34f3c6a3a8981625a71480d4d29c9f3cbd94ec19647479f2ef419e08d707ee4f

  • SHA512

    bf146c93ca00ac9ef3f32a80cc5a567155eec990fb45d6b082d9e41a2f8181f6bf367031ddc170e6af617a7a818f705e62d1c2eecb7a4288910ed8de637d1479

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlA:86SIROiFJiwp0xlrlA

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4115a6dc9babe8f161faa6ceb48474dd_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections