General

  • Target

    a8d9faf988990edc955ce05b39bcb860_JaffaCakes118

  • Size

    2.6MB

  • MD5

    a8d9faf988990edc955ce05b39bcb860

  • SHA1

    df93bdc06d92a6bce0cddcb57dfd64d7d5a25a8c

  • SHA256

    07e8e367dc636b7f4ac426a524bc0a125c681b22830785d8de4692248c62d574

  • SHA512

    bd21c84f6e82a3facd4b4a136d46afe4739b58c2a1b4d143ad697e912fca724a34adc3be88cf8d034ec9ab211d29b57acacfa07bd0bfc4ce0fa93ad80d4764b4

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlW:86SIROiFJiwp0xlrlW

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a8d9faf988990edc955ce05b39bcb860_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections