Overview

overview

10

Static

static

10

7c503a5c60...18.exe

windows7-x64

10

7c503a5c60...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7c503a5c60063b5192ebaeeec9750e46_JaffaCakes118

  • Size

    90KB

  • MD5

    7c503a5c60063b5192ebaeeec9750e46

  • SHA1

    3bee8adfaedfd7dbb4b036199b4d71b069c0d1fe

  • SHA256

    f269639e908fd241e7eb3ec86979e880178965b2bee4c10aab0d63e329b74ed4

  • SHA512

    2473f57ad0a1043725019c64b8fc82eace6b620fe2b6f428e62dd09449f97ae2748f8e83b6af2d23d79928f3fbeb9d3a7c14e577c79b8fbcaad0f86e7ba4e669

  • SSDEEP

    1536:qbQkt0/qTpimVU2siDW6cxbXMiKBSguaIQp8AxfnG+6aMc0jOEJ15DTvlEwLkzmy:/lgVU2siDWHxjMiGIQpRfG9OOEwzy

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://4maat.com/by/back/gate.php

Attributes
  • payload_url

    http://4maat.com/by/back/micro.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 7c503a5c60063b5192ebaeeec9750e46_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections