Extracted

Extracted

• • Target

    0a3446edafe9dcde7e03f0a3ccc9ea10.exe

  • Size

    827KB

  • MD5

    0a3446edafe9dcde7e03f0a3ccc9ea10

  • SHA1

    05b6d68e2ccee2ab13386e842660323770808e00

  • SHA256

    d8b4f035a0bfea78b46dcb6c904fa4ca84d7f758d2d5c749182e36d9f352a6b1

  • SHA512

    73ae1e0e301df53796f8228bf9502abe089d5365b3a2538e525ac576788838fa68e0c0e54f2f1a3b6c6cd00b93e1fa971f17a50abcc43ba22c4df98c3eea2730

  Score

  10^/10

  ransomwarespywarediscoverystealerraccoon

  • Raccoon

    Simple but powerful infostealer which was very active in 2019.

    stealerraccoon

  • Raccoon log file

    Detects a log file produced by the Raccoon Stealer.

  • Deletes itself

  • Loads dropped DLL

  • Reads user/profile data of local email clients

    Email clients store some user data on disk where infostealers will often target it.

    spyware

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery

  • JavaScript code in executable

  behavioral1behavioral2