General

  • Target

    a3b6d5673da1935bc2b4e30b43eac573_JaffaCakes118

  • Size

    2.6MB

  • MD5

    a3b6d5673da1935bc2b4e30b43eac573

  • SHA1

    0afd8d6ad420fe58f9db299d87e3ca03a46a7788

  • SHA256

    6ba942960fd75d5c73ff60158c3d9efea9e728594c304c7f3427f1377084e8b0

  • SHA512

    c30370a4a4001c771470051b0a8a18aec38609f8e3bea17b969d9422683e5ccc294271164b0d8e734e4dc42609f13f925f7d7fca7bba19f29ba9459bd0b4926e

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlL:86SIROiFJiwp0xlrlL

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a3b6d5673da1935bc2b4e30b43eac573_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections