Overview

overview

10

Static

static

10

4f858d3c13...18.exe

windows7-x64

10

4f858d3c13...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    4f858d3c1389838a91f4e40a80f389b5_JaffaCakes118

  • Size

    2.6MB

  • MD5

    4f858d3c1389838a91f4e40a80f389b5

  • SHA1

    83c8d518159b28405adc8ac2e414f7e444481145

  • SHA256

    11840fda28a8a6dc2acd585e64d2de80efe80a4846f041799c1b50de112ed823

  • SHA512

    bd254902eb14c92218ffbf3f88849ac82ea444e7b1c659a25f45e09d33d307f05ea7a9e111acdd63b895bde1ca86c4ec984e448b26a993495efc7bf141f12a4e

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlG:86SIROiFJiwp0xlrlG

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4f858d3c1389838a91f4e40a80f389b5_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections