General

  • Target

    b4a9c4c518e302640bf6804e68ad5a67_JaffaCakes118

  • Size

    2.2MB

  • MD5

    b4a9c4c518e302640bf6804e68ad5a67

  • SHA1

    c1afb7e8d7fdd2821e70cb591d588062bc68ca0e

  • SHA256

    40bf6e7752907843a906d07c8531691ae36d1ca974bbd7a331c0e936ba046dcf

  • SHA512

    4a2a5cc44afb4e0d06eb1de8d15d1f2c70135b976830bbdaca22178dcc8ce51c38ff15e5f8feb24c8cbd8473f910fe26a1f33f9f17001925a94e0ec6e0efe161

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZY:0UzeyQMS4DqodCnoe+iitjWwwc

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b4a9c4c518e302640bf6804e68ad5a67_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections