![]() ![]() InnoSetup script file – runs regular installation and extracts the malware. The malware comes inside an Inno Setup installer that is responsible for installing both the original program and the malware. The first versions seen, ITW, were written in C++, but a year has gone by and the malware authors have since developed new versions written in Borland Delphi, apparently to make it harder to detect and analyze. The trojan is capable of taking screenshots from the victim machine and capturing input. The Raccoon malware family is a Trojan that steals user data from about 60 browsers. In this article, we analyze this new variant, its attack methods, and disguise techniques. The new malware sample flew under the AV radar and there were only three minimal detections on VirusTotal over two weeks ago. ![]() The new variant masquerades itself as legit, known program installers. Initially discovered back in 2019, the Raccoon malware family is used to steal confidential data and browser information. A new variant of the raccoon malware to steal user data from browsers.Īmidst an expanding background of emerging COVID-19 cyber threats, the Reason Labs research team discovered and reported on a new variant of the Raccoon malware family.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |