Extracted

Extracted

• • Target

    5b6b342af1a0117fddab7e5a24d9e258.exe

  • Size

    1.6MB

  • MD5

    5b6b342af1a0117fddab7e5a24d9e258

  • SHA1

    2c16eb99a9c778a96680ae19466d2e549b4f6b8d

  • SHA256

    68a4315ec90aded56b0e8fcda244e5b1cad8993a1785c0c6d70ce3d073ef6826

  • SHA512

    46f93632bc9e1f3a842b3598e3eec42c8a1d2685d631995c0f6fd3055ba7104be3866dff9acd2f4cc63bcde225d342e19b25fd38b39745aea0824b43144fdb02

  Score

  10^/10

  ransomwarestealerraccoonspywarediscovery

  • Raccoon

    Simple but powerful infostealer which was very active in 2019.

    stealerraccoon

  • Raccoon log file

    Detects a log file produced by the Raccoon Stealer.

  • Deletes itself

  • Loads dropped DLL

  • Reads user/profile data of local email clients

    Email clients store some user data on disk where infostealers will often target it.

    spyware

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery

  • JavaScript code in executable

  behavioral1behavioral2