General

  • Target

    a527709ffc914f145a55778193fbe250_JaffaCakes118

  • Size

    2.2MB

  • MD5

    a527709ffc914f145a55778193fbe250

  • SHA1

    380aa442b33b828ddf2e117772b8a85bd74267fa

  • SHA256

    969ff2badbcbf4b88719015c5ed8869a8b382e2abf5d1c8479c4176b73e5d4da

  • SHA512

    586dda187b486ade00e4e48d2db792437ff86509880cca59342857027d1247f03f434f2a3a279d21f87617e9445c8d41aa530fdbf97ae2f5918c4c42f4a7a866

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZV:0UzeyQMS4DqodCnoe+iitjWww5

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a527709ffc914f145a55778193fbe250_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections