Overview

overview

10

Static

static

10

b327ab5b8f...18.exe

windows7-x64

10

b327ab5b8f...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    b327ab5b8f54cf40118c2d531e280d33_JaffaCakes118

  • Size

    2.6MB

  • MD5

    b327ab5b8f54cf40118c2d531e280d33

  • SHA1

    379c52d0efd7da5cf82df28a0a099875c4ec46de

  • SHA256

    405ae183125a5c7b32250e47a05fe0d2f401fe6efb2d110199af465c7cd6590b

  • SHA512

    5965f17d3596579f0ca7c774a8dfa22f35b3849cb364bb77c9cb2eb67130d825b4bc64e22541ad160034afc381831b8f4362acc60e7f65b8b2fbcf0c0222d682

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrl1:86SIROiFJiwp0xlrl1

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b327ab5b8f54cf40118c2d531e280d33_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections