General

  • Target

    b67004a5fec25e7933d7c6c05ce36aa2_JaffaCakes118

  • Size

    2.6MB

  • MD5

    b67004a5fec25e7933d7c6c05ce36aa2

  • SHA1

    aac93bfced28958b908732fb67f80063a7085a3f

  • SHA256

    d3f26f953ff173164107683fe7b7fa0fd5de4ce0076fa27ef448ff219def8279

  • SHA512

    9482ba15f90004d6d34838a2d365b5493c72453a3fbc88d109aa4333f3328e1c0452ffd63b7e95056cca5bf561d8b709fa2e23789a45c04ea82a005590b52fb8

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlD:86SIROiFJiwp0xlrlD

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b67004a5fec25e7933d7c6c05ce36aa2_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections