Overview

overview

10

Static

static

10

a5876bfaa1...18.exe

windows7-x64

10

a5876bfaa1...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    a5876bfaa1e139c073ecf92afd3efd66_JaffaCakes118

  • Size

    2.6MB

  • MD5

    a5876bfaa1e139c073ecf92afd3efd66

  • SHA1

    c57faa0fb31915f7f4dbb6513f81301c3d72b3ed

  • SHA256

    297c97afaffa6d683cfd4b75e5c5c80392ed399485f442d9251f9880390da3a0

  • SHA512

    a8a809dde357c686f66029fbeb15ae60d95085e652143f258c25906ead64fdc9c9483cfbda70757b0f52943b7fb175dc8a6ccf112d118f56d360de71cb0bda6a

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrld:86SIROiFJiwp0xlrld

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a5876bfaa1e139c073ecf92afd3efd66_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections