Extracted

• • Target

    22f2ca052440097328da09628f485d93

  • Size

    97KB

  • MD5

    22f2ca052440097328da09628f485d93

  • SHA1

    541ff77ec622f8d89391c03ac72a7819b2698512

  • SHA256

    6d9bcfd2c8c57fe116541a636adb2cbcbc0c0cb8b6ee084c698ee029d7dfd305

  • SHA512

    ef8def5b97bb134aed1dd1dadf87b4e74620599ef7740cb9d3ecb741d518a6323b23a0b21d849577947a23bd1fca0a642b87562e7f1dc768940eaa1b03cde166

  • SSDEEP

    1536:cz5mvY419AnYOxz5sB6c8PtNeTGAOfWQr58zKinenYedlYn2a4+ddOCK6h:+RuCsB6cQtIdASWineXlYnn0Ih

  Score

  10^/10

  ponydiscoveryratspywarestealer

  • Pony,Fareit

    Pony is a Remote Access Trojan application that steals information.

    ratspywarestealerpony

  • Reads data files stored by FTP clients

    Tries to access configuration files associated with programs like FileZilla.

    spywarestealer

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2