Extracted

• • Target

    set-up.exe

  • Size

    371KB

  • MD5

    192e4c5d8014a5ea0fc2e9037c9495fb

  • SHA1

    567611db1e7e4f55c441e06665335938ba8b32d4

  • SHA256

    f050a85f54e4d19d5c9ee302406922889e518df2607d67606f8f952f97853de6

  • SHA512

    0a9fdece10945ce2f21474c46ae4f49d372f30653022b524229e8837aca8955f4fc854c662d5b45aff98c61f356f8dcb4723e81079813ccf9cfa858d17d92c80

  • SSDEEP

    6144:94A7hhxG1koJKi6rBRNAO4EiAsnbzrpVnoHBiuqavmYrfefn/5:uChhxwUNiWsnbPp1KBbr3rWfnB

  Score

  10^/10

  raccoonbfbcd0ada8d3bffa2d0bd90c2e930c27discoveryspywarestealer

  • Raccoon

    Raccoon is an infostealer written in C++ and first seen in 2019.

    stealerraccoon

  • Raccoon Stealer payload

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery

  • Suspicious use of NtSetInformationThreadHideFromDebugger

  behavioral1behavioral2