Overview

overview

10

Static

static

10

d356d501c8...18.exe

windows7-x64

10

d356d501c8...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d356d501c8554dbb693362120d90a63e_JaffaCakes118

  • Size

    2.6MB

  • MD5

    d356d501c8554dbb693362120d90a63e

  • SHA1

    24fcf3a8e68c566d4a60075571717c3eb7126d99

  • SHA256

    16f636c7314e52be8fd7079ae20c9f601ca067757d0d67964e58d667691de3cd

  • SHA512

    033b4d9360dca52d876abc03b0bd9a31c9164e3cde3ac8bad706e8f2bbac6b41ae991085da94a251735e1bd4a21aa4d757da16444f1bb5cd06a1584355d99992

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrll:86SIROiFJiwp0xlrll

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d356d501c8554dbb693362120d90a63e_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections