Overview

overview

10

Static

static

10

ae84f51327...18.exe

windows7-x64

10

ae84f51327...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ae84f51327fdc36fb6f272ecb31df532_JaffaCakes118

  • Size

    2.6MB

  • MD5

    ae84f51327fdc36fb6f272ecb31df532

  • SHA1

    3146442879db89f71c85eb2c540ba69491be1519

  • SHA256

    edbf129740a61bcc7483b8daaeb9eb6733f87d08f7b38ded0556892cd9ef1a21

  • SHA512

    3dde675b763b5fc6910efb6820a6d141cc81c7c7b3c2406bd718e1785230d8e8967def04a3a7a1a017bcbfc498c49cc6c45a40c7ccd384aaff830750500e1bf3

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlEIIIIIIIIIIIIIIIIIIIIII5:86SIROiFJiwp0xlrlo

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ae84f51327fdc36fb6f272ecb31df532_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections