WinSCP is a free and open-source SSH File Transfer Protocol, File Transfer Protocol, WebDAV, Amazon S3, and secure copy protocol (SCP) client for Microsoft Windows.
WinSCP "Commands" can contain persistence and are run upon hotkeys or interaction with the WinSCP interface. The type "CustomCommands" which are command line commands, multiple CustomCommands exists by default and are stored in "HKCU:\SOFTWARE\Martin Prikryl\WinSCP 2\Configuration\CustomCommands"
Usecase: Establishing persistence on a Windows host
WinSCP "Commands" can contain persistence and are run upon hotkeys or interaction with the WinSCP interface. The type "Extensions" are PowerShell .ps1 files, multiple Extensions exist by default and are stored in "%LocalAppData%\Programs\WinSCP\Extensions" or "%PROGRAMFILES(X86)%\WinSCP\Extensions".
Usecase: Establishing persistence on a Windows host
WinSCP "External editor" can contain persistence and are run upon editing a remote file. Persistence is created by setting a new external editor, setting a binary as the editor, and making the editor the preferred editor. The preferred editors is stored in "HKCU\SOFTWARE\Martin Prikryl\WinSCP 2\Configuration\Interface\Editor\0".
Usecase: Establishing persistence on a Windows host