General
-
Target
47dd06d345afcf096ba98d3cf643de90_JaffaCakes118
-
Size
90KB
-
MD5
47dd06d345afcf096ba98d3cf643de90
-
SHA1
17e2e159fa472afea6145fa2a430f7f9d61f9118
-
SHA256
737fe9cc52c5d67343af631ff7a79a6febde505ffc7ec613214a7033ff2ef143
-
SHA512
2860373cef2f744fdf1633d062d9da3c4de94f4bce596899683fb201c9318eb3a04fa056aaef6cd4eb80731c592e91ba4b75e3c0f5f113fbef75cd86d0103834
-
SSDEEP
1536:UnSncgyGqTDRXmGcwSCfZDalZNg9tvo0iO3AX4ApTvMEIFkzmt2l:2SnMuGc/CfZDap6COU45EIJtm
Score
10/10
Malware Config
Extracted
Family
pony
C2
http://cryodiffusion.cf/panel/gate.php
Attributes
-
payload_url
http://mypdfysite.ru/shit.exe
Signatures
-
Pony family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
47dd06d345afcf096ba98d3cf643de90_JaffaCakes118
Headers
Sections