Extracted

• • Target

    e10165fe4a7e17936bad2441360c079d_JaffaCakes118

  • Size

    92KB

  • MD5

    e10165fe4a7e17936bad2441360c079d

  • SHA1

    3ee3ff89eadcaf8c4834f51545b07b08cec6cd66

  • SHA256

    0c845ea9b21cde5216ce3e3d08a86f5d5a462f052d5482dcfba1319dd463f501

  • SHA512

    58b827622a1673a6467aa8d855484cbbd9ea92d28dc3426fdbf2ad23586b930ede0493cdfa992fc516a36ccd9edceed64480d5811851abbd7b646ed08c313a73

  • SSDEEP

    1536:SqC4ITsmuCH1Tg1EKZN/gMv6Bh4aGyPy1ml00RSBVS+QVc6vZM27yon5W0KRM+6B:SqaJnH1gN5zyPy1DWSBVvp6RDnY0KRMP

  Score

  10^/10

  ponycredential_accessdiscoveryratspywarestealer

  • Pony,Fareit

    Pony is a Remote Access Trojan application that steals information.

    ratspywarestealerpony

  • Credentials from Password Stores: Credentials from Web Browsers

    Malicious Access or copy of Web Browser Credential store.

    credential_accessstealer

  • Reads data files stored by FTP clients

    Tries to access configuration files associated with programs like FileZilla.

    spywarestealer

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Unsecured Credentials: Credentials In Files

    Steal credentials from unsecured files.

    credential_accessstealer

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2