Overview

overview

10

Static

static

10

ff041db4a8...18.exe

windows7-x64

10

ff041db4a8...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    ff041db4a8ad92ef282cb59ffc0d7207_JaffaCakes118

  • Size

    2.6MB

  • MD5

    ff041db4a8ad92ef282cb59ffc0d7207

  • SHA1

    2161b5f0383735c852372865ce9e76d95db8c058

  • SHA256

    9cd55f6c26a371541c3b855d78971a0a9a2a4f5bb0a4eb4d0fb7c19288718bc3

  • SHA512

    13bf79708a6e863ef32b595bd6a1d023a3f831e412ed9a6166d866b449e237a0a4eef3e50c54c1e4ed5900550334a0e621e056b6be8d47dc62dbd2531ffc7737

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrlI:86SIROiFJiwp0xlrlI

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ff041db4a8ad92ef282cb59ffc0d7207_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections