Overview

overview

10

Static

static

10

a53863ae53...18.exe

windows7-x64

10

a53863ae53...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    a53863ae53f02aa3a6d6f1b0b3a5fb71_JaffaCakes118

  • Size

    2.6MB

  • MD5

    a53863ae53f02aa3a6d6f1b0b3a5fb71

  • SHA1

    dadc550f6d5192264c68e6dfb1a1f6ebb7c0d46f

  • SHA256

    7079a008b0c79f20aaa2ce060ae134ecf76044a585e33767ca264396c6515907

  • SHA512

    278669a920cc642f2475ae3fa3e4956f1d51136ea44cb196012360c0be9e708003e765c44884a43444789e584c584774f4aed1f8a0cce79846f2763c3c92e825

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlHd:86SIROiFJiwp0xlrl9

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a53863ae53f02aa3a6d6f1b0b3a5fb71_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections