General

  • Target

    ae0a7c6e852c1e9d4538b363c1c778a4_JaffaCakes118

  • Size

    2.6MB

  • MD5

    ae0a7c6e852c1e9d4538b363c1c778a4

  • SHA1

    0bb033665e48b3d01875deaaeeaa51bf711cdc70

  • SHA256

    64a29b85c3b296f569b202d2541c3ae384335b7cf04cfc5ace9111074756f625

  • SHA512

    a14ef42c2ee5948a92c963e5f161029b1be6aee41b3cf20662298d74b819150ce9bd1caeb13e6335e3a9b0b31e20bd42861c3de4d0a6eb38c9830f35c38f05b4

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlk:86SIROiFJiwp0xlrlk

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ae0a7c6e852c1e9d4538b363c1c778a4_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections