Overview

overview

10

Static

static

10

b5a5b63d5b...18.exe

windows7-x64

10

b5a5b63d5b...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    b5a5b63d5b3f01ddae353fcd259e8863_JaffaCakes118

  • Size

    2.6MB

  • MD5

    b5a5b63d5b3f01ddae353fcd259e8863

  • SHA1

    0c6311f8765409b5f5baec7fb8de9d9724d75069

  • SHA256

    cd5f0fe49fa5bfa2e6e11559b2b02b4de02b9124e7dbc3e79ccc83398c693296

  • SHA512

    e618003c0ba8ae47cb036d19b3829865d8cf2972f6b6cfa48a0afd4e7b4f6472e0187e89c25346c797459ca51931a6e6073baec514bead7643171e5f92ca5e3e

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlb:86SIROiFJiwp0xlrlb

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b5a5b63d5b3f01ddae353fcd259e8863_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections