General

  • Target

    d108ee1f039a331cc906eaa03c422bfc_JaffaCakes118

  • Size

    2.2MB

  • MD5

    d108ee1f039a331cc906eaa03c422bfc

  • SHA1

    6a63d061d1c19e6b0120d0ae4522c7fba7d3b680

  • SHA256

    d58cab3cd0d4aee82a02bb93a3f3b164a6c7cb7560aa5ab025d9db14ca3482a4

  • SHA512

    58de90bcb94b935aa156d315acb3135e1f3290277709def5e681f66f7f6da4f3f65f5b028d04ce1966b9d2b7f69cd6ab16bb19fb9e768c94aae589d4f4660571

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZa:0UzeyQMS4DqodCnoe+iitjWwwG

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d108ee1f039a331cc906eaa03c422bfc_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections