General
-
Target
8fe9b190e334be94cb89bafc7ae5db67e730031ec41c6b77c5afdd0c83a40513
-
Size
462KB
-
Sample
210915-htl27aaae3
-
MD5
b8b9c8c201a7ba8fec592e50ffed78d5
-
SHA1
49e6e4543b7d53bd1375ee810eef19ed5f3dad84
-
SHA256
8fe9b190e334be94cb89bafc7ae5db67e730031ec41c6b77c5afdd0c83a40513
-
SHA512
1633fa3fbed820bac9ed0a39389be58637b63e30dbcfcc7472d8b3b4ee0c8919854709182040ccbadf9fcdd0c0177088d693aeee6e611d3300441f323978aabb
Malware Config
Targets
-
-
Target
8fe9b190e334be94cb89bafc7ae5db67e730031ec41c6b77c5afdd0c83a40513
-
Size
462KB
-
MD5
b8b9c8c201a7ba8fec592e50ffed78d5
-
SHA1
49e6e4543b7d53bd1375ee810eef19ed5f3dad84
-
SHA256
8fe9b190e334be94cb89bafc7ae5db67e730031ec41c6b77c5afdd0c83a40513
-
SHA512
1633fa3fbed820bac9ed0a39389be58637b63e30dbcfcc7472d8b3b4ee0c8919854709182040ccbadf9fcdd0c0177088d693aeee6e611d3300441f323978aabb
Score10/10-
Raccoon
Simple but powerful infostealer which was very active in 2019.
-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of local email clients
Email clients store some user data on disk where infostealers will often target it.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-