General

  • Target

    a5f8371caace18b8a697d4a91f64c5c8_JaffaCakes118

  • Size

    2.6MB

  • MD5

    a5f8371caace18b8a697d4a91f64c5c8

  • SHA1

    2d97b15c5d30b0aac9b1b952b2cc22336ab775c8

  • SHA256

    656b6dc757cda4da15730eed80a4560c87d2d84a295a353b22b72bb63a5d1217

  • SHA512

    e1875884867fc732107a27a1ed2ab7876542ffe99dad37891386dee6d9296e13b4ebb71c836e4a820f1ceb74e43e2c356fe2a3696e0dddf935195e69985da919

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrl0:86SIROiFJiwp0xlrl0

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a5f8371caace18b8a697d4a91f64c5c8_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections