Extracted

• • Target

    BankStatement009810.xlsb

  • Size

    37KB

  • MD5

    4bedb6631269e591cdfe5c981cd4d219

  • SHA1

    46dfc240038bb75928ccc8153781a6b0e5957904

  • SHA256

    bfb37c9adc809e880f56dd10898b5425242330d6e2fa69e014a98e6dc18ce416

  • SHA512

    2adbb8c384711161029f129ddd9de0108af47245f01fbebc7670f1d864aeeb47398b5a01fed65985ca4db42f4fa6df33dd3c5e8142edf6788e569ae898d50ad6

  Score

  10^/10

  raccoonc021300d0074689fde86c87568e215c582272721stealerdiscoveryspyware

  • Raccoon

    Simple but powerful infostealer which was very active in 2019.

    stealerraccoon

  • Downloads MZ/PE file

  • Executes dropped EXE

  • Loads dropped DLL

  • Reads user/profile data of local email clients

    Email clients store some user data on disk where infostealers will often target it.

    spywarestealer

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2