General

  • Target

    b4571d135ac93cbc400825791c31bec1_JaffaCakes118

  • Size

    2.6MB

  • MD5

    b4571d135ac93cbc400825791c31bec1

  • SHA1

    0655a3c23de49b9037a8b4a3223fb40bb9c46bb6

  • SHA256

    772cd39620498ca6bb3f39675f9f1c1fc8753e41a69537e64d1ad280b181810a

  • SHA512

    66f39c60a2bd1e8fc6acf82ea0bd9e0ec8cbfc468cb647786e222b7926c136827889f75303f3a065886b9df17a47b4714dedca191d106112c6e72710a18574ff

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlE:86SIROiFJiwp0xlrlE

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b4571d135ac93cbc400825791c31bec1_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections