General

  • Target

    a8a73cfa81faba2406e9d5667bb2e1bb_JaffaCakes118

  • Size

    2.2MB

  • MD5

    a8a73cfa81faba2406e9d5667bb2e1bb

  • SHA1

    bee5a324ee2a725507189bb65e1750f0a6e8d152

  • SHA256

    0156d1f5123b44015999b9c8ba3b431fb5a7cbc35f4a4a8e898801c536a01d81

  • SHA512

    05c441f4e460fdfea233b604021ec53258c9e3c8436b14eb6b9c42dba744a75ca8040494548fadefbd4044ae888442b50bdc75e2749ef41a02a709f56eca1bc7

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZr:0UzeyQMS4DqodCnoe+iitjWwwv

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a8a73cfa81faba2406e9d5667bb2e1bb_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections