General

  • Target

    ab44967a87b99eaa15fa71940db9a2ba_JaffaCakes118

  • Size

    2.6MB

  • MD5

    ab44967a87b99eaa15fa71940db9a2ba

  • SHA1

    34040e5693947a90b03186ec49b5f5398e234e52

  • SHA256

    aa861880f6e18f2682b1647ebe54fc51cd62c689fd443e0803fd969b465a2235

  • SHA512

    7618192d7a84eab0992988210ce22f26f0d7761edb76fe423d555a7b966149ec6b162c5838c5166fd59d7fdeb1f42b74c472b16ce2dc338cdc9f89c169601e71

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlH:86SIROiFJiwp0xlrlH

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ab44967a87b99eaa15fa71940db9a2ba_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections