Overview

overview

10

Static

static

10

999a58a816...0N.exe

windows7-x64

10

999a58a816...0N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    999a58a8163d3169ac8b99b1dd26f780N.exe

  • Size

    2.6MB

  • MD5

    999a58a8163d3169ac8b99b1dd26f780

  • SHA1

    3217a93a00c87bf518f2965df2ed3e6179b255c9

  • SHA256

    e7827953221c86c4466a6ae26957766334a8835ae5c85f68b6057e700434761e

  • SHA512

    35ae6b28d959791f76f77fb8af981dfe346bfd25db802fae46e3809246c44e1140e8383684f58b9255f694a3590f9a80e08c43e2645db926ac88b2fcf488ccb1

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlt:86SIROiFJiwp0xlrlt

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 999a58a8163d3169ac8b99b1dd26f780N.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections