General

  • Target

    b6d2345650048258144cd16229b09a88_JaffaCakes118

  • Size

    2.2MB

  • MD5

    b6d2345650048258144cd16229b09a88

  • SHA1

    f1b7a1813908112d905e542443e5e1f90fe5a990

  • SHA256

    5c301d4b096a36c22f61acdb2100e554190e4e436f3c295973d01d6fc88265e7

  • SHA512

    1e26b2d95144127f12b22d851f3aa438969a2a9d51799c5982c53db7ee35bd91a91ac89d6866e2fd6257f1f2c3e9d82c9029234a73b1e7fbdea045a9ecabb3cf

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZE:0UzeyQMS4DqodCnoe+iitjWwwQ

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b6d2345650048258144cd16229b09a88_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections