Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

f849bd1065...18.exe

windows7-x64

10

f849bd1065...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f849bd10653c49e6ba02a409a112fed3_JaffaCakes118

  • Size

    2.2MB

  • MD5

    f849bd10653c49e6ba02a409a112fed3

  • SHA1

    8f1330785d4011ddd2af67a04f491b15527c3aa5

  • SHA256

    63e23df0daf000917489066122a242d9400cf844e7dcec9d10e50be353c2c359

  • SHA512

    1a6784202ae809692139fd08a4abd8e2d8b9b76595a60c436b8344cc4c1acfd57a81f0b86b0af1e3270540b0b256172404869cc909b541751968d05a3be9370b

  • SSDEEP

    24576:0UzNkyrbtjbGixCOPKH2I1iIWILtfOIJ+HKodCHPC0cF3u7P1+eWQ8f/x52vHNZZ:0UzeyQMS4DqodCnoe+iitjWwwt

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f849bd10653c49e6ba02a409a112fed3_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections