Overview

overview

10

Static

static

10

d170a04d79...18.exe

windows7-x64

10

d170a04d79...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d170a04d79e797b371d1c1a2ed7007ed_JaffaCakes118

  • Size

    2.6MB

  • MD5

    d170a04d79e797b371d1c1a2ed7007ed

  • SHA1

    bacc9c58fc11fce48d5e7d0f0d274e4b9cf1ccf5

  • SHA256

    af32c3f0b717aae2b296d3a56c58b3f68d0961b3e059506bd384b2ddd61d967e

  • SHA512

    7528deef95cac2c61aa53a50d91f14e8cf9ad12d18616ab93ee46bdec0a0f66067f952a19b952c7d9833afa1a7c53a8c1bdece6d76faeaafb7e00efeb724c288

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlH:86SIROiFJiwp0xlrlH

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d170a04d79e797b371d1c1a2ed7007ed_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections