Overview

overview

10

Static

static

10

c060fc8072...18.exe

windows7-x64

10

c060fc8072...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    c060fc8072394c07ffbda6b0b3bd753d_JaffaCakes118

  • Size

    2.6MB

  • MD5

    c060fc8072394c07ffbda6b0b3bd753d

  • SHA1

    2450a96b6979cd25f6c891faefaee759ebb9b6b3

  • SHA256

    c33331fecb439e7c4e2ff29c400491fa9f6a1543a70401d3b6a14dcb9e25a3c3

  • SHA512

    797859fc2f75f3f894362810e5d1b65a7d9116843f9fecad7a390e9e8679347e27fe9dbe3870dbd2b29e04f3472a2113b737867fe8b2f5f93bdebf289432554f

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlj:86SIROiFJiwp0xlrlj

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • c060fc8072394c07ffbda6b0b3bd753d_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections