Overview

overview

10

Static

static

10

f6b99c876e...18.exe

windows7-x64

10

f6b99c876e...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f6b99c876e62f61298b3e00874cf23cd_JaffaCakes118

  • Size

    2.6MB

  • MD5

    f6b99c876e62f61298b3e00874cf23cd

  • SHA1

    0754968892e62e098c44c6a6ce68a9a85f1abb8a

  • SHA256

    9b96b09ca406c730ef6adbb6bb5328894e9ddf609c131bea46083eccedf3449e

  • SHA512

    5d9ebc538017f7e640e38b69affd8c3c3026573d86004a98ae022507ade3cb09e1a128144f816279550627c5a598e55a02dfe39f22b0eaf081fff5d0531375ca

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlD:86SIROiFJiwp0xlrlD

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f6b99c876e62f61298b3e00874cf23cd_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections