General

  • Target

    a4c5feb0c7ac0a9bb703980f6a623150_JaffaCakes118

  • Size

    2.6MB

  • MD5

    a4c5feb0c7ac0a9bb703980f6a623150

  • SHA1

    7d4c4fa9c125eb02de3bc81f243397d8e0b5996a

  • SHA256

    fbdbb56f2ee8ce8ba14ec2b658ea2dfa5359ccc5c135d985b199cb06111ac206

  • SHA512

    c22e999e1dabca912dcc9eba3779b3c9804de51183d329d0de9c3701a1b78f3c53607a98a71793e7b0e7829d5b2ff4a2e5fb90b27f19488b9a3bce619e6cc199

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlg:86SIROiFJiwp0xlrlg

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a4c5feb0c7ac0a9bb703980f6a623150_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections