General

  • Target

    ce70daa9d5b7cfdb6054c881e15f241a_JaffaCakes118

  • Size

    2.6MB

  • MD5

    ce70daa9d5b7cfdb6054c881e15f241a

  • SHA1

    c579d4232b3d1b252405959c215394c4bf17ad2d

  • SHA256

    6d4ae25073ad59994c98d899e2430043fb90e4cfc0c59bf7f2a5fc66c56f1a35

  • SHA512

    fdfae2131e9d9b5abc57b159f69cc905d762914672d11d49ee039ef5786a218ba48fd9fb52b95d327884a6fed88abd043e1438e87d68417a08161ec4ee8613e7

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlR:86SIROiFJiwp0xlrlR

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ce70daa9d5b7cfdb6054c881e15f241a_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections