General

  • Target

    a27411279ae5368b5b2d5a023cf9f8aa_JaffaCakes118

  • Size

    2.2MB

  • MD5

    a27411279ae5368b5b2d5a023cf9f8aa

  • SHA1

    dffbc542a86fa0b89abec018bed80204f2732486

  • SHA256

    60c48edb6ab700d9d7f385fba23d14dcd5d54909405c20fe0ee918fc209436a1

  • SHA512

    5180e8e7ee86f50670d155b797f284bd0800ac4261cf2053f5b77cc3e6498f2a1c0f297cfd9b7cf5540f5245d3df2becd799dd8229b5864a52b11e27140f9389

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZm:0UzeyQMS4DqodCnoe+iitjWwwq

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a27411279ae5368b5b2d5a023cf9f8aa_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections