Overview

overview

10

Static

static

10

a64acf6954...18.exe

windows7-x64

10

a64acf6954...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    a64acf69547b8a16c79df1d5fd939c52_JaffaCakes118

  • Size

    2.6MB

  • MD5

    a64acf69547b8a16c79df1d5fd939c52

  • SHA1

    ccb85c5630dbe536691ba067bf41dee14d0a9a4f

  • SHA256

    88c3eb327283df5e1828422b29614d7c52f436a78aa46ee0cd41f3addf7e9300

  • SHA512

    8d77062e940e4cb11a97ab7d2cf271f53cb80721bef4b8f17fe31eefa3b1438becebd66c4a77ff94dea10d17c5c2702f207bad4d7799bb91b636cdee5c0d1a35

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrln:86SIROiFJiwp0xlrln

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a64acf69547b8a16c79df1d5fd939c52_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections