Overview

overview

10

Static

static

10

a98028733e...18.exe

windows7-x64

10

a98028733e...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    a98028733e0675f272781383a1e940b2_JaffaCakes118

  • Size

    2.6MB

  • MD5

    a98028733e0675f272781383a1e940b2

  • SHA1

    de23ed90c5ced548fe9ef940c6e8be9586166ab7

  • SHA256

    0f7c86da6263de672bac0416f6d77025a7dd7c47942caa8ef7f284d24618b860

  • SHA512

    4234798bf2237637cac29edb02b6e68e8bb3b4f85aa9b3280d5808167836de4389a7dc97f6532900233be5c18c7cbbd108a711583332be5a589d3680cc4849f6

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlk:86SIROiFJiwp0xlrlk

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a98028733e0675f272781383a1e940b2_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections