Extracted

• • Target

    2fa54fc3b95fae13e1cfc94e31d076eb_JaffaCakes118

  • Size

    93KB

  • MD5

    2fa54fc3b95fae13e1cfc94e31d076eb

  • SHA1

    bbdc072619664ed3673d2567f42f957d809ced69

  • SHA256

    38fc5b89b7819febe865e4bfb4a4ea69eb60787e55938382d720ae6dd87f73f3

  • SHA512

    ae51f7f76fd7dee9e7d668826a524fffa6b06a02f436309b3eb14e3c6898f9698e291743437ef4bfe522b1dd1672ffa76b4d3ecbb3767a55b69b1a4804988465

  • SSDEEP

    1536:pGZQbiNSO+aKd6ecNHs1uvNIpR+qaoVsQvmhTW8jr/ZFfvqgLrixeTnYNjyd+m2m:IZQONSbPdh0DIpxao7WW8nhFdLr1YNjY

  Score

  10^/10

  ponycredential_accessdiscoveryratspywarestealer

  • Pony,Fareit

    Pony is a Remote Access Trojan application that steals information.

    ratspywarestealerpony

  • Reads data files stored by FTP clients

    Tries to access configuration files associated with programs like FileZilla.

    spywarestealer

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Unsecured Credentials: Credentials In Files

    Steal credentials from unsecured files.

    credential_accessstealer

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2