Overview

overview

10

Static

static

10

a39862bb5f...18.exe

windows7-x64

10

a39862bb5f...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    a39862bb5fed44e1c3e8321a22cf677b_JaffaCakes118

  • Size

    2.6MB

  • MD5

    a39862bb5fed44e1c3e8321a22cf677b

  • SHA1

    5ef57e611a2928a6a77528f4007e871a55853d03

  • SHA256

    5016be138cfb15271e5c54b6ed1cd53d760dd7c4955839efc32adda0825db571

  • SHA512

    9c3234096ed21b7a206828445755144a7257f86075adcf2b359f19bb571d4e493d05c827c4bf1d3dd73dd305e57643fe579fb20bcd54d978ed9a1795670cafcb

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlS:86SIROiFJiwp0xlrlS

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a39862bb5fed44e1c3e8321a22cf677b_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections