General
-
Target
49fa149b97e01fdab0253e2ed128e6c7_JaffaCakes118
-
Size
90KB
-
MD5
49fa149b97e01fdab0253e2ed128e6c7
-
SHA1
3b0e12b70d94f3c65b7ef5f0cd6327e3659639f4
-
SHA256
a4e70dd752cb4b9f58097d6f81d926a7590d93bb5bc4701748e4ce6e9a8dbfee
-
SHA512
aeda372f2d28dbe26d09d66c0c8d87ce62b6e9723df25c316d1f9cfd7a69e93f736aba850127cb63712d4c62e1f3cf9d4991a0ce98ed7f36afe77e010e07c416
-
SSDEEP
1536:UnSncgyGqTDRXmGcwSCfZDalZNg9tvo0iO3AX4ApTvMEIgkzmt2l:2SnMuGc/CfZDap6COU45EIctm
Score
10/10
Malware Config
Extracted
Family
pony
C2
http://clinique-sainte-marie.top/images/css/site-logo/gate.php
Attributes
-
payload_url
http://clinique-sainte-marie.top/images/css/site-logo/shit.exe
Signatures
-
Pony family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
49fa149b97e01fdab0253e2ed128e6c7_JaffaCakes118
Headers
Sections