Overview

overview

10

Static

static

10

a48440462d...18.exe

windows7-x64

10

a48440462d...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    a48440462d07a5cb17160df59b4323b7_JaffaCakes118

  • Size

    2.6MB

  • MD5

    a48440462d07a5cb17160df59b4323b7

  • SHA1

    d7daa3e1bed524040e10c08be6d2b24ae7340efa

  • SHA256

    e29974887732863c998065585818c94fcb38d7136751a51c41ee8b1d8d208563

  • SHA512

    d61975e650568bc0cfd1084aa0a283ff27a38fa8c057aa156816cf070e1ab1d96532111cd460caff8b0f2e4ae5101f1ab4663c2443e0ccecd480daa5296e1296

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlx:86SIROiFJiwp0xlrlx

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a48440462d07a5cb17160df59b4323b7_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections