Extracted

• • Target

    47339ed5e14f3ebb529c702f811f9eb8

  • Size

    107KB

  • MD5

    47339ed5e14f3ebb529c702f811f9eb8

  • SHA1

    457ac4035fd32308aac8f824b69d4952b00b9f3d

  • SHA256

    ad85d4cbaf67bc41a2de0f6aa272a752e58ca80f7f6a09000e550901cebf8009

  • SHA512

    f5a721d544f27cf13bd6bd13f5741728839e26e2d60d86ff8b387e756722570b5e67ce5c0f584b738b8860bc18958fea7522d3e3844af3388d5364354bb3234e

  • SSDEEP

    3072:bQ1XYgmhdvRYC+E8gwIkWsAPbkmxYCdyvYKwBEs1A:SovhXT+E8QTsAiCMvYjq

  Score

  10^/10

  ponydiscoveryratspywarestealer

  • Pony,Fareit

    Pony is a Remote Access Trojan application that steals information.

    ratspywarestealerpony

  • Reads data files stored by FTP clients

    Tries to access configuration files associated with programs like FileZilla.

    spywarestealer

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2