General

  • Target

    e18e5c4d42c9df0bfd34469d33e9f3ea_JaffaCakes118

  • Size

    2.2MB

  • MD5

    e18e5c4d42c9df0bfd34469d33e9f3ea

  • SHA1

    3e4fe4bbd3f58a746e55550c72440a926b197cb3

  • SHA256

    d61be95ecc37ea7dc8758c7b91bafd8974639a0088ba9c74f9dafe89a1dceafe

  • SHA512

    209b570eeb2f18ec8179fc3bfa58f114de6895f1fb5d4b05ed62c7c5062a24bda9bbb8f0038e00c9e57e95a93d80263387bd1e867911338fba70e07f11f6f8a9

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZp:0UzeyQMS4DqodCnoe+iitjWww9

Score
10/10

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • e18e5c4d42c9df0bfd34469d33e9f3ea_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections