Extracted

• • Target

    fac8ff498944eda2e7c63230d2d5159d.exe

  • Size

    261KB

  • MD5

    fac8ff498944eda2e7c63230d2d5159d

  • SHA1

    fbe7bf1edd8e024f13b02acfa174324725c5d193

  • SHA256

    6de48ec2e58c733b944fda7740ecb99d717a42ba3d586682915a2b3f6a980a43

  • SHA512

    ec1a3e18a8e3a5d6e336aca08d9b302e1ee77763bc9aa7e618177fd6534d531948593f84b8551cc62b5ba47dd9f0cc33a013a19843168e09dc9146f117b5851f

  • SSDEEP

    3072:/7ksIDXvVgSz53HxeY3MhFG8yyrHe6PKMFrXh5ibGflYkLePKE6jM:AcSz53HH3cBTJy+bhaM9qKd

  Score

  10^/10

  raccoon385573eb8024f2ce9fbfd9c1ba5d4cd4discoveryspywarestealer

  • Raccoon

    Raccoon is an infostealer written in C++ and first seen in 2019.

    stealerraccoon

  • Raccoon Stealer payload

  • Downloads MZ/PE file

  • Loads dropped DLL

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses cryptocurrency files/wallets, possible credential harvesting

    spyware

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2