Extracted

• • Target

    JaffaCakes118_6e81432ea2ca21a719e890a42dadcd00

  • Size

    35KB

  • MD5

    6e81432ea2ca21a719e890a42dadcd00

  • SHA1

    6a76d1fefddcd1ea3d3a176e4e4f0d2cc587ece4

  • SHA256

    59d70147ca80b6706e512bd97c50cebcb5d2296a5c9554c431133056b65bc9ea

  • SHA512

    7d6ebce662379683d237dc8416782269c5d9d465f2d0e10a3c4429130477758a1f01f25f8cdd1015f3cbd94c7f5b03dacd12cbbaf94b9abb81372c9590ab3754

  • SSDEEP

    768:dTF81Cdb2R7O9r+8x4myjQxazNyyDEXnbcuyD7U:zSgK89rjx3yLzIyDEXnouy8

  Score

  10^/10

  ponycollectioncredential_accessdiscoveryratspywarestealerupx

  • Pony family

    pony

  • Pony,Fareit

    Pony is a Remote Access Trojan application that steals information.

    ratspywarestealerpony

  • Reads data files stored by FTP clients

    Tries to access configuration files associated with programs like FileZilla.

    spywarestealer

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Unsecured Credentials: Credentials In Files

    Steal credentials from unsecured files.

    credential_accessstealer

  • Accesses Microsoft Outlook accounts

    collection

  • Accesses Microsoft Outlook profiles

    collection

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2