The US Department of Justice on Wednesday announced the sentencing of a Ukrainian national for his role in the distribution of the Raccoon Infostealer malware.

The man, Mark Sokolovsky, 28, was arrested in March 2022 in the Netherlands, after the FBI and law enforcement agencies in Italy and the Netherlands took down the infrastructure behind Raccoon Infostealer.

The US announced charges against Sokolovsky in October 2022. In February 2024, he was extradited to the US from the Netherlands, and he pleaded guilty in October 2024 to operating the Raccoon Infostealer malware.

According to court documents, Raccoon Infostealer was offered under the malware-as-a-service (MaaS) business model, where miscreants would pay the operator roughly $200 per month in cryptocurrency to lease access to the malware.

The threat actors then distributed the information-stealing malware through phishing and other means, infecting the computer systems of unsuspecting victims to steal their credentials, financial information, and other data.

The stolen information was either used to commit financial fraud or was sold to other cybercriminals on underground cybercrime portals.

In 2022, after dismantling Racoon Infostealer’s infrastructure, the FBI announced it collected over 50 million unique credentials and forms of identification stolen using the malware, along with other types of data.

Sokolovsky, the US DoJ announced, was sentenced to 60 months in prison. As part of the October plea agreement, he agreed to pay over $910,000 in restitution.

“Mark Sokolovsky was a key player in an international criminal conspiracy that victimized countless individuals by administering malware which made it cheaper and easier for even amateurs to commit complex cybercrimes,” US Attorney Jaime Esparza for the Western District of Texas said.

Related: Man Accused of SQL Injection Hacking Gets 69-Month Prison Sentence

Related: Justice Department Beefs up Focus on Artificial Intelligence Enforcement, Warns of Harsher Sentences

Related: Former Roommate of Accused Capital One Hacker Sentenced

Related: Cybersecurity Aphorisms: A Humorous and Insightful Look at the Industry’s Truths