Overview

overview

10

Static

static

10

a83c27a326...18.exe

windows7-x64

10

a83c27a326...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a83c27a32619e36f49cc7c3502bd4e43_JaffaCakes118

  • Size

    2.6MB

  • MD5

    a83c27a32619e36f49cc7c3502bd4e43

  • SHA1

    4d24161a848417e26bf4488cd40f02f83ef6cc43

  • SHA256

    93cf920aa2c41def09a76a43d93d6e867c1d7b8152c1bcbe3d6a80aabc577a83

  • SHA512

    c6576c0c0129cf5e8eb3d5f59548fb241b2f1438c86267ca1ccb63a6b3c459062145e9879b334d67548d874311eb0d5a18b096d1bea8b016e26e8e99a3a5dc35

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrle:86SIROiFJiwp0xlrle

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a83c27a32619e36f49cc7c3502bd4e43_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections