General
-
Target
e887803b64658716d55857b6d75f3f8c_JaffaCakes118
-
Size
90KB
-
MD5
e887803b64658716d55857b6d75f3f8c
-
SHA1
1506480cd649bbaae6ad3e3391619d271fb78e7c
-
SHA256
5db7373fbe23f3c6031ff4a91f36b2848bacf6c0607ef0e9fccba2dccea2f577
-
SHA512
b323c61c2a4a2d11b932d55a7e17d7b893b40d4b0b86d9aff998fcee14004a53b9128871b43e648ed2046a667d171f9e90d93b5cab413beebe6232adff37566e
-
SSDEEP
1536:UnSncgyGqTDRXmGcwSCfZDalZNg9tvo0iO3AX4ApTvMEIIkzmt2l:2SnMuGc/CfZDap6COU45EI0tm
Score
10/10
Malware Config
Extracted
Family
pony
C2
http://baathman1111.net/pony/gate.php
Attributes
-
payload_url
http://baathman1111.net/pony/invo.exe
Signatures
-
Pony family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
e887803b64658716d55857b6d75f3f8c_JaffaCakes118
Headers
Sections