raccoon | 5461b0ebe837b90c2b54bfcdcd27aea84f21f9a4899443d16b4ba589907e6bea | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10_x64

Sharing

General

Target

5461b0ebe837b90c2b54bfcdcd27aea84f21f9a4899443d16b4ba589907e6bea
Size

458KB
Sample

210915-gyrb2adadk
MD5

b06b7d796fdb6cab38af00eb70209150
SHA1

00fcaeb0328c1984d12da6e0744446ab50146d75
SHA256

5461b0ebe837b90c2b54bfcdcd27aea84f21f9a4899443d16b4ba589907e6bea
SHA512

4b27dc780fd959417197ba998c57c82f624b6adae2b00b231fe7c60355d7367dda66a5465a9a7bead0542cfdd09204ad3ca4e8b1beecaba5c097ea31f5570d85

Score

10^/10

raccoon discovery spyware stealer

Static task

static1

Behavioral task

behavioral1

Sample

5461b0ebe837b90c2b54bfcdcd27aea84f21f9a4899443d16b4ba589907e6bea.exe

Resource

win10v20210408

raccoon discovery spyware stealer

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  5461b0ebe837b90c2b54bfcdcd27aea84f21f9a4899443d16b4ba589907e6bea
- Size
  
  458KB
- MD5
  
  b06b7d796fdb6cab38af00eb70209150
- SHA1
  
  00fcaeb0328c1984d12da6e0744446ab50146d75
- SHA256
  
  5461b0ebe837b90c2b54bfcdcd27aea84f21f9a4899443d16b4ba589907e6bea
- SHA512
  
  4b27dc780fd959417197ba998c57c82f624b6adae2b00b231fe7c60355d7367dda66a5465a9a7bead0542cfdd09204ad3ca4e8b1beecaba5c097ea31f5570d85
Score

10^/10

raccoon discovery spyware stealer
- Raccoon
  Simple but powerful infostealer which was very active in 2019.
  stealer raccoon
- Downloads MZ/PE file
- Loads dropped DLL
- Reads user/profile data of local email clients
  Email clients store some user data on disk where infostealers will often target it.
  spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

raccoondiscoveryspywarestealer

© 2018-2024

Terms | Privacy