General
-
Target
8ca000287aeb642793469498a9dd0941_JaffaCakes118
-
Size
90KB
-
MD5
8ca000287aeb642793469498a9dd0941
-
SHA1
441166f7bc3017dd645026225580de44ec0764ff
-
SHA256
ba587863217ddb8f570f7126fcc16575b8b5280aedb7d03ea459e7774a8c4568
-
SHA512
43ad091e15c7a009578da3beb50f5245e77cad09965ed4fc6ce2d736f308009994b53e07426a3d30b370449690b7bf1e6472796c84c7be51ccaf8cf8cfbcd93b
-
SSDEEP
1536:UnSncgyGqTDRXmGcwSCfZDalZNg9tvo0iO3AX4ApTvMEIPkzmt2l:2SnMuGc/CfZDap6COU45EIvtm
Score
10/10
Malware Config
Extracted
Family
pony
C2
http://leatherbulletin.com/bit/panel/gate.php
Attributes
-
payload_url
http://leatherbulletin.com/bit/panel/bit.exe
Signatures
-
Pony family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
8ca000287aeb642793469498a9dd0941_JaffaCakes118
Headers
Sections