General

  • Target

    a0b9e5248935df0b58b592bbca94de11_JaffaCakes118

  • Size

    2.2MB

  • MD5

    a0b9e5248935df0b58b592bbca94de11

  • SHA1

    88e516b279efd1ab9f0da3026e34b6ef7288c60e

  • SHA256

    de2f3a5fa48f1c81ad7cc4f39c1e6fba7dff7fda1b5a13d818c7ceac0821cfdf

  • SHA512

    d3ab78875a6f8b9bd819b84da1a4839061f8934138e4ae6b56346e5e5de71fc6a3f452453b6f89ef2faa819954c7feb45658e312e3fbf1bf0e9178314d5af4b0

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZy:0UzeyQMS4DqodCnoe+iitjWww2

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a0b9e5248935df0b58b592bbca94de11_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections