Overview

overview

10

Static

static

10

6201d7584f...18.exe

windows7-x64

10

6201d7584f...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6201d7584f4e99004c125e7e18338d57_JaffaCakes118

  • Size

    2.6MB

  • MD5

    6201d7584f4e99004c125e7e18338d57

  • SHA1

    be84759026bf6bb749033e1758e6240a788bbe58

  • SHA256

    ce398f893bc045a097b602b91b69685a034c0734b22e236a346232117e98b951

  • SHA512

    81bf9dc99236719bd7582c2489ba8b2c0f76fe923902cfcec70b743a36df6299de90e5c81848dd26557389a6f4863ce5b6a68e2dff7b5e621b8ad2ab045878e0

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrly:86SIROiFJiwp0xlrly

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 6201d7584f4e99004c125e7e18338d57_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections