Overview

overview

10

Static

static

10

d076b5c4a0...18.exe

windows7-x64

10

d076b5c4a0...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d076b5c4a0afe4999e1b7d29c8b14834_JaffaCakes118

  • Size

    2.6MB

  • MD5

    d076b5c4a0afe4999e1b7d29c8b14834

  • SHA1

    3fd89ffb1a2dc7a6e1576f7dd23b94cfbcadba71

  • SHA256

    1f281e5348f32fab987b428f5b835201eaaae4bc6f2174124f90ae40ff3d8325

  • SHA512

    e81d617b928141e86e5b74336e4d89c4381d06f396534beb54e2e22fb1693f9faf5b4c1c54cbd576eff38bad8e18f21c29014b4d6f6e96e76cb585062a544709

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrl0:86SIROiFJiwp0xlrl0

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d076b5c4a0afe4999e1b7d29c8b14834_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections