Overview

overview

10

Static

static

10

aadaf9bf5e...18.exe

windows7-x64

10

aadaf9bf5e...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    aadaf9bf5edc67f5016228328f935c18_JaffaCakes118

  • Size

    2.6MB

  • MD5

    aadaf9bf5edc67f5016228328f935c18

  • SHA1

    b7cf92a023147813156c3b66e3e3b14ba758b50a

  • SHA256

    ed65d43307672400e40bd2ed322d6a0cf41ff29c72c6bf323e4e0a882cafeb2f

  • SHA512

    40abd1e4454b69ee40d3f64af642f9793065641437d1413da446ca3d878e20dc0b324978bf298b2fc1043f029adaeec48406552f788f1b171720b669426c83f4

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlp:86SIROiFJiwp0xlrlp

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • aadaf9bf5edc67f5016228328f935c18_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections