Overview

overview

10

Static

static

10

894a25e4b6...18.exe

windows7-x64

10

894a25e4b6...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    894a25e4b6e99f3d85692a61d945fb65_JaffaCakes118

  • Size

    2.6MB

  • MD5

    894a25e4b6e99f3d85692a61d945fb65

  • SHA1

    fe8381456311b9ff9844fe11771f47942f381e6d

  • SHA256

    2e5a8e05c6f674edc5cef039d216ffc68e1d4c3d47dc71e551e250b7448b0ac0

  • SHA512

    b10a03e311a16506f6b81a5ef44c6216def55f00a38f0258016b55e1af37d608a0001a92c9fae1367752b31c290d0b908abe5f7e9fabd06820d0dcf4694d7519

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlM:86SIROiFJiwp0xlrlM

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 894a25e4b6e99f3d85692a61d945fb65_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections