Overview

overview

10

Static

static

10

816afd5495...fN.exe

windows7-x64

10

816afd5495...fN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    816afd5495005f46db7cc37310fcac1d0ebfb67721aa48ea82224993922b9effN.exe

  • Size

    2.6MB

  • MD5

    d95ca30f44b0aca4eeb779d4e95d16e0

  • SHA1

    e08b1db3b52e7a7ca657fef5a3225f47b604fb07

  • SHA256

    816afd5495005f46db7cc37310fcac1d0ebfb67721aa48ea82224993922b9eff

  • SHA512

    de1b9478f9928e5380586909f56ba4c0cfafb4dd699c5438452a7990d64051b9b35c7ffe25e0021cd2347408e042e1a30a5032ab51478f5984fd7af3fbacc920

  • SSDEEP

    49152:8coQxSBeKeiOSiFmoJggggLo40KDi3gp0XhCjyrl0:86SIROiFJiwp0xlrl0

Score
10/10
pony

Malware Config

Extracted

Family

pony

C2

http://don.service-master.eu/gate.php

Attributes
  • payload_url

    http://don.service-master.eu/shit.exe

Signatures

  • Pony family
    pony
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 816afd5495005f46db7cc37310fcac1d0ebfb67721aa48ea82224993922b9effN.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections