Overview

overview

10

Static

static

10

d39e7d2eb4...18.exe

windows7-x64

10

d39e7d2eb4...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d39e7d2eb4947ff71b3a331c4e910082_JaffaCakes118

  • Size

    2.6MB

  • MD5

    d39e7d2eb4947ff71b3a331c4e910082

  • SHA1

    e4fb24f9f32e82d56665d5f8b82a60d58a5f436f

  • SHA256

    76069c511ce31fab4b55ec539914f4ad24ccf4ca2da04a722dc1ac8f3475f14f

  • SHA512

    85c14316060f32c7fdbe26a94ad1d0c2524ad3112655b0440ec2701e2fb136efc5aaf483a61fc3f2ab5490f9bdb1cee74651e69a3ee06affd195b2a412d20e9d

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlG:86SIROiFJiwp0xlrlG

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d39e7d2eb4947ff71b3a331c4e910082_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections