General

  • Target

    a853c80b581a03dea2352312a5a5854f_JaffaCakes118

  • Size

    2.6MB

  • MD5

    a853c80b581a03dea2352312a5a5854f

  • SHA1

    7f3b2abdc46c7c2901a4e57b1db13cc214598402

  • SHA256

    86cdc6bd5c9c7199444d0d7607c7a317bde0eb193caccfc719de453b4b9a6a67

  • SHA512

    d5b427af613c7b018aa73263c2304d28fb0f313fa105f474bc6c5029508a7029bf52748498e3eb878a6229b89a914d0319e1493fe160042041552a7bd6620953

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlx:86SIROiFJiwp0xlrlx

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a853c80b581a03dea2352312a5a5854f_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections