General

  • Target

    ab88d7825456dbd5af3e098d2b6fb64d_JaffaCakes118

  • Size

    2.2MB

  • MD5

    ab88d7825456dbd5af3e098d2b6fb64d

  • SHA1

    9018c4f945d7de0b042fbdde7c6c59cd785eb335

  • SHA256

    5e8827c626fe8aa0f3963bb55c22991a15d314f8a0345671038e32d8560447fc

  • SHA512

    a0c660c9003dc557f1721552a4a7bac11e3e20c420545d79df8012a372591afa76dd4d5ff7b866e5b114a747bf67f96202c8c146d61a060c0a48f9a3670da6c7

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZ5:0UzeyQMS4DqodCnoe+iitjWww1

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ab88d7825456dbd5af3e098d2b6fb64d_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections