Overview

overview

10

Static

static

10

d935b972f8...18.exe

windows7-x64

10

d935b972f8...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d935b972f820836f8db8289704d3e1be_JaffaCakes118

  • Size

    2.6MB

  • MD5

    d935b972f820836f8db8289704d3e1be

  • SHA1

    16e438689e0912d78586642d8eb2622f9031dc1b

  • SHA256

    d8e53fed83502a1e9c8f85347d9e2007fc457c3fd8374bc6adccb52852e27cc8

  • SHA512

    317b0b60a3c1fbfd8d64988cb70dfe7085fa78dcc2b42fcc2f1f30d2852cd0340b46a0281c694202ddb91ea2efb1df542efd5accd37faab86206b0cf02728174

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlm:86SIROiFJiwp0xlrlm

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d935b972f820836f8db8289704d3e1be_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections