Friday, January 22, 01:33
Home security Racoon Malware: Anyone can buy it and steal data

Racoon Malware: Anyone can buy it and steal data

A relatively new one malware named Racoon can steal data from about 60 applications from One computer.

The Racoon was first spotted a year ago and quickly became known for its low price and capabilities. Also known as Legion, Mohazo and Racealer, the software was originally only promoted in Russian Forums, but soon became worldwide known. The malware was first introduced in April 2019, under the MaaS (Malware-as-Service) model for $ 75 per week or $ 200 per month. For this money, users gain access to a dashboard that allows them to customize Racoon as needed, access stolen data, and download the software.

Racoon Malware
 The MaaS model is widely available today because it "opens doors" to a large number of clients, many of whom lack technical knowledge.

Η CyberArk mentioned that the software is written in C ++ and is not complicated at all. However, it can steal information from nearly 60 programs (browsers, portfolios, emails, etc.). All popular search programs (Google Chrome, Mozilla Firefox, Microsoft Edge, Internet Explorer, Opera, Vivaldi, Waterfox, SeaMonkey, UC Browser) are on the target list. It is also looking for cryptocurrency portfolios such as Electrum, Ethereum, Exodus, Jaxx and Monero. From emails, Racoon searches for data from Thunderbird, Outlook, Foxmail, and more.

CyberArk researchers say Racoon is based on a process to steal data: it detects and copies it file with useful information and creates a .zip file ready for theft. "After applying its capabilities, it gathers all the files it wrote in a file. Now all it has to do is send the file back to C&C server and erase his trace ”- CyberArk

Racoon Malware-applications

Racoon's additional features include the collection of operating system details (operating system version and architecture, language, hardware information, etc.). It can also be easily adjusted to pull photos from the screens of infected systems. In addition, the malicious software can act as a dropper for other malicious files.

Like all malware, Racoon is actively improving with frequent updates, new features and features. Analyzing it, the researchers noticed new releases released that expanded the support for applications, adding FileZilla and UC Browser and adding the software encryption option directly from the dashboard.


Please enter your comment!
Please enter your name here

In a world without fences and walls, who needs Gates and Windows


Mac: How to see which model you have and when it was released

When you need support for your Mac - or want to install some kind of upgrade - you usually need to know the exact ...

Bill Gates: Will he work with Biden on COVID-19 / climate change?

Microsoft co-founder Bill Gates said on Twitter that he is looking forward to working with the new US President, Joe Biden, and ...

What are the rumors circulating about the iPhone 13?

Apple iPhone 13 will have a redesigned Face ID system that will have a smaller notch at the top of the screen, ...

Biden: How was the political transition in the US captured on social media?

As Joe Biden was sworn in as President of the United States, this important political transition was captured on popular social media. On January 20, ...

CentOS ceases to be supported but RHEL is offered for free

Last month, Red Hat caused a great deal of concern in the Linux world when it announced the discontinuation of CentOS Linux.

Microsoft Office 365 employee passwords leaked online!

A new large-scale phishing campaign targeting global organizations has been found to bypass Microsoft Office 365 Advanced Threat Protection (ATP) and ...

COSMOTE and Microsoft provide new cloud solutions for businesses

COSMOTE and Microsoft expand their cooperation, offering even more advanced and high quality cloud solutions, in large and small ...

Cyber ​​attacks in Eastern Europe are on the rise!

The cyber-attacks that have taken place in many US government agencies and companies in recent months have caused concern in the developing countries of ...

Tesla reduces the prices of the Model 3 in Europe

Tesla has reduced the prices of the Model 3 in many European markets, which reductions could be partly linked ...

iOS, Android, XBox users in the crosshairs of a new malvertising campaign

Recently a new malvertising campaign was discovered that targets users of mobile and other connected devices and uses effective ...