General

  • Target

    c0f3118e519f5bb4eed883cb060f84b3_JaffaCakes118

  • Size

    2.2MB

  • MD5

    c0f3118e519f5bb4eed883cb060f84b3

  • SHA1

    52d6bcd2ba5fd24fd105728506c2aa5fec724009

  • SHA256

    3f6c23a0aefe0c7d1b4a320462fe12fbd028267e6544829baa5847e739ba8699

  • SHA512

    2bd22370f08d180a9db5ed77ba38948cf4c8a36411435af4bc38fb6cea9e971c3f3811bc61d67cf40b8d30798072808a77498d8aa6c9895413fad5c71157f100

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZR:0UzeyQMS4DqodCnoe+iitjWwwt

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • c0f3118e519f5bb4eed883cb060f84b3_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections