home

MiPony.exe

Mipony

www.mipony.net

Publisher:
www.mipony.net

Product:
Mipony

Version:
2.3.0.0

MD5:
33dac754f4e6e87a6c3de13f5ca810b3

SHA-1:
889ba4af20c51965550fb2c98ccf1cc4c8ab00cc

SHA-256:
bcec0a7aabaef8172331b267cd7193d453af9c550f0dab7f86cd1bd08a3b56f2

Scanner detections:
2 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/18/2024 6:53:03 AM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
W32/Ramnit.C
7.11.30.172

Panda Antivirus
PUP/MiPony
15.08.13.12

File size:
4.9 MB (5,108,736 bytes)

Product version:
2.3.0.0

Original file name:
MiPony.exe

File type:
Executable application (Win32 EXE)

Language:
Language Neutral

Common path:
C:\Program Files\mipony\mipony.exe

File PE Metadata
Compilation timestamp:
7/16/2015 8:47:25 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

.NET CLR dependent:
Yes

CTPH (ssdeep):
98304:8s696868686K6K686K6P6d636M6o6r68686868686G6L6n0bj/40v6:hE111nD1DO8sHDI11111HI20br

Entry address:
0x4BE696

Entry point:
FF, 25, 00, 20, 40, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00...
 
[+]

Entropy:
6.4134

Developed / compiled with:
Microsoft Visual C# / Basic .NET

Code size:
4.7 MB (4,966,400 bytes)

The executing file has been seen to make the following network communications in live environments.

TCP:
Connects to s6.gboxes.com  (37.59.5.189:182)

TCP (HTTP):
Connects to o031.orange.fastwebserver.de  (85.114.130.31:80)

TCP (HTTP):
Connects to ns511047.ip-167-114-65.net  (167.114.65.27:80)

TCP (HTTP SSL):
Connects to lu4.api.mega.nz  (31.216.147.135:443)

TCP (HTTP SSL):
Connects to lu3.api.mega.nz  (31.216.147.134:443)

TCP (HTTP):
Connects to float.1196.bm-impbus.prod.sin1.adnexus.net  (103.243.222.30:80)

TCP (HTTP):
Connects to de-in-f154.1e100.net  (74.125.24.154:80)

TCP (HTTP SSL):
Connects to de-in-f138.1e100.net  (74.125.24.138:443)

TCP (HTTP SSL):
Connects to a23-214-189-235.deploy.static.akamaitechnologies.com  (23.214.189.235:443)

TCP (HTTP):
Connects to a-0001.a-msedge.net  (204.79.197.200:80)

Scan MiPony.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.