General

  • Target

    a084823fbc6f6ebddb0363bf2391d1f7_JaffaCakes118

  • Size

    2.6MB

  • MD5

    a084823fbc6f6ebddb0363bf2391d1f7

  • SHA1

    89f9980a3554b0097cdc9f616c1c7fec13ed4597

  • SHA256

    ab9f5aa1a044000a3452b8cf280ac5d3059afcf178b7b895c3099fede244f775

  • SHA512

    923d8c7879ed435030ead785ed2864745e55c2a042686c712f27f422b339d8431504ed5dce1fbf229792fdd0d638771d2b5331e31f71a7360297427e87ade99c

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrl/:86SIROiFJiwp0xlrl/

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a084823fbc6f6ebddb0363bf2391d1f7_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections