General

  • Target

    9a1183c939f3b08d28ce7904bf56973d_JaffaCakes118

  • Size

    2.2MB

  • MD5

    9a1183c939f3b08d28ce7904bf56973d

  • SHA1

    db04dda5d0ffb225105866f4a0052ce495c14924

  • SHA256

    46f38c3fa0b27c485ca00bf7ba2026b02218757ea5d1ce671939e59fb0ade8b9

  • SHA512

    cf2bae3974553da42595f19e14203a7f6a4ef2f1817839f3b37d9e65322d8a1097407b4fcf77f84b2cb849fd2314bd6227bec557371253075dcadcd5343bc262

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZT:0UzeyQMS4DqodCnoe+iitjWwwH

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 9a1183c939f3b08d28ce7904bf56973d_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections