General

  • Target

    b4d261556e6cf35bb4ad759f1e62b6bb_JaffaCakes118

  • Size

    2.2MB

  • MD5

    b4d261556e6cf35bb4ad759f1e62b6bb

  • SHA1

    b82a065303e78f592a5abe6afe7c873a1b9d3f00

  • SHA256

    75dd3b769b265c8720aacec743ee46135a052da318f9f7b068c4151ae2c86ff0

  • SHA512

    db0f24af5d1faf446f2bf4786c1f31f71d7b14cce548740d41bee5c021639b2c6e176bc9d2e6101955dd90d046b14768f8db518e0fa4818be51d69dca3e6da25

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZg:0UzeyQMS4DqodCnoe+iitjWww0

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b4d261556e6cf35bb4ad759f1e62b6bb_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections