Overview

overview

10

Static

static

10

c03b9aa675...18.exe

windows7-x64

10

c03b9aa675...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    c03b9aa675adb9b9b03c07a5b011cec3_JaffaCakes118

  • Size

    2.6MB

  • MD5

    c03b9aa675adb9b9b03c07a5b011cec3

  • SHA1

    794d86f1d44c555dada6ed8eb35bfc0eaae6811f

  • SHA256

    0eddf3fd663dd88e8fda9283b24897f71c041da41bc8799da0b06417f0351764

  • SHA512

    63e6e64d8b2871eaee86b0155a6dfd3ec4cc80c7b62c00309749859f9bceef423899c8d6698fafa1e0d247bf9476bc290f98fd2778057457ffe316b03295818b

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlw:86SIROiFJiwp0xlrlw

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • c03b9aa675adb9b9b03c07a5b011cec3_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections