Overview

overview

10

Static

static

10

d989873fee...18.exe

windows7-x64

10

d989873fee...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d989873fee7af7e3de9aa57822419d6b_JaffaCakes118

  • Size

    2.6MB

  • MD5

    d989873fee7af7e3de9aa57822419d6b

  • SHA1

    5731ef01c88a1535567c0f44a7f2d1cc7f39ef01

  • SHA256

    e9ca52b4f9f78f3fd568ac6723c629aef8e0ed9e80c5d219390b603b4a5a6e91

  • SHA512

    c09a8b9ae62315db6d40d5e58356bce915b3b22521ebbb69231a23592a2325ab2d4ee086d44164ab786d9472978568ade7ccfceb9d1a2f51e5e3a99fd76f61a9

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrl1:86SIROiFJiwp0xlrl1

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d989873fee7af7e3de9aa57822419d6b_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections