General

  • Target

    b4ad0bc96dc6860909e013264a669441_JaffaCakes118

  • Size

    2.6MB

  • MD5

    b4ad0bc96dc6860909e013264a669441

  • SHA1

    fdf1c7b189747eba8955788fd2618a5e98e51d07

  • SHA256

    1b202c25ee1e60a26f0cf527120ad4f5489c0520ea1a9c1383c6cb2c65b2bba7

  • SHA512

    713cfea9e36ef8b8b0fc9e41494d0c3f51c3e14076f157b93df8ce35eb6d2a4ddfd89f85f81f7c2db9661311df98224d0c6007ff25e036c8105f6f801d46d5dd

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrl0:86SIROiFJiwp0xlrl0

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b4ad0bc96dc6860909e013264a669441_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections