Overview

overview

10

Static

static

10

80c30835a4...18.exe

windows7-x64

10

80c30835a4...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    80c30835a4632d0ce030b7e0c60ee6db_JaffaCakes118

  • Size

    2.6MB

  • MD5

    80c30835a4632d0ce030b7e0c60ee6db

  • SHA1

    acddd00e07e663569ee6172a962472e02b37d3ab

  • SHA256

    aa2e6b33d91f46aac5c8a62bc64c3f4cdcaeee05ba73ebff0d91ae1183c4a180

  • SHA512

    5c072d7d426efe1bab49b67b68d4d876b5e94500241486200569ed62b580876b0f6a929e73c2b6d8fb9a04960c49a57861e6b81c94ae3dce80dee9f6507c0de1

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlp:86SIROiFJiwp0xlrlp

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 80c30835a4632d0ce030b7e0c60ee6db_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections