?dwPlaceholder@@3PAEA
_DecodePointerInternal@4
_EncodePointerInternal@4
General
-
Target
Raccine.zip
-
Size
99.9MB
-
MD5
c31efac8f32904485a5e0d81363a67fc
-
SHA1
1405480d18123ed0002387aad74c4a553b52dffc
-
SHA256
8b8524d99c41e32912669ff4be7aba713495ad3fc03e345c5a7e16d473718e48
-
SHA512
febb2c26df92a4a97eee4f0fe3065b5d463b305abf6f461ca878345d2a2da35684a4c3ac7368636b799d3158964c5a4c4c16cc65d588cfdcc11bb3983fb41f74
Score
N/A
Malware Config
Signatures
Files
-
Raccine.zip
-
Raccine/Raccine.exe
-
Raccine/RaccineElevatedCfg.exe
-
Raccine/RaccineRulesSync.exe
-
Raccine/RaccineSettings.exe
-
Raccine/Raccine_x86.exe
-
Raccine/install-raccine.bat
-
Raccine/preqeq/NDP462-KB3151800-x86-x64-AllOS-ENU.exe
Exports
-
Raccine/preqeq/vc_redist.x64.exe
-
Raccine/preqeq/vc_redist.x86.exe
-
Raccine/reg-patches/raccine-reg-patch-bcdedit.reg
-
Raccine/reg-patches/raccine-reg-patch-diskshadow.reg
-
Raccine/reg-patches/raccine-reg-patch-net.reg
-
Raccine/reg-patches/raccine-reg-patch-powershell.reg
-
Raccine/reg-patches/raccine-reg-patch-ransomware.reg
-
Raccine/reg-patches/raccine-reg-patch-taskkill.reg
-
Raccine/reg-patches/raccine-reg-patch-uninstall.reg
-
Raccine/reg-patches/raccine-reg-patch-vssadmin.reg
-
Raccine/reg-patches/raccine-reg-patch-wbadmin.reg
-
Raccine/reg-patches/raccine-reg-patch-wmic.reg
-
Raccine/scripts/windows-hardening.bat
-
Raccine/yara/ext-vars-test.yar
-
Raccine/yara/gen_powershell_invocation.yar
-
Raccine/yara/gen_raccine_kills.yar
-
Raccine/yara/gen_ransomware_command_lines.yar
-
Raccine/yara/in-memory/gen_loaders.yar
-
Raccine/yara/mal_darkside.yar
-
Raccine/yara/mal_emotet.yar
-
Raccine/yara/mal_exchange_cryptominer.yar
-
Raccine/yara/mal_revil.yar
-
Raccine/yara/powershell_loaders.yar
-
Raccine/yara/ryuk-commandlines.yar
-
Raccine/yara/yara32.exe
-
Raccine/yara/yara64.exe
-
Raccine/yara/yarac32.exe
-
Raccine/yara/yarac64.exe