Extracted

• • Target

    3da135295e9656c566198a074891d12a.exe

  • Size

    526KB

  • MD5

    3da135295e9656c566198a074891d12a

  • SHA1

    4a0b2f9e0aaab1e3e582dccbfdd326ffdcd50c9d

  • SHA256

    54f9e59bebd84343d69b966a0b1cb6a585da3502d27fa9d882eaa56cd3cffeed

  • SHA512

    70b52965cbf7e9bfcf2789c11e93afd83919d526692f2426535e3e728151e3a81ba9409244ddf07f76f0a1120ec6f6a7039be4afecf07cd87ee4923899bdf04f

  • SSDEEP

    6144:AMpElumPbWZbekXxUCeNM9GdVWGFKBFSUADmvLXjkm8la1LuCQUOqrtihLBZF4i:xqw/xUCeNM9Gd4GFK79A01LuCQUdit

  Score

  10^/10

  raccoond020f14a64593b123f5299012b4c811adiscoveryspywarestealer

  • Raccoon

    Raccoon is an infostealer written in C++ and first seen in 2019.

    stealerraccoon

  • Downloads MZ/PE file

  • Loads dropped DLL

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2