Overview

overview

10

Static

static

3a6ec826f1...e7.exe

windows7_x64

10

3a6ec826f1...e7.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3a6ec826f10cfb3460ad85edf44d19b7145a110fc35a9f498c461331e1c144e7

  • Size

    906KB

  • Sample

    201106-n1ty52yakj

  • MD5

    6257084f2c8954d097665d971302097f

  • SHA1

    a12b25abd6c5d925aea4c0d3ce05ca6959ce54d6

  • SHA256

    3a6ec826f10cfb3460ad85edf44d19b7145a110fc35a9f498c461331e1c144e7

  • SHA512

    95e65af5fb8a20b087a1911c3ba2986da04bba9b67027149a3604e9875ef7f1d28c66ae739d32933d272c1c4303fe3723ff04a403c65a1722eda82f3bae04236

Score
10/10
raccoonstealer

Malware Config

Targets

    • Target

      3a6ec826f10cfb3460ad85edf44d19b7145a110fc35a9f498c461331e1c144e7

    • Size

      906KB

    • MD5

      6257084f2c8954d097665d971302097f

    • SHA1

      a12b25abd6c5d925aea4c0d3ce05ca6959ce54d6

    • SHA256

      3a6ec826f10cfb3460ad85edf44d19b7145a110fc35a9f498c461331e1c144e7

    • SHA512

      95e65af5fb8a20b087a1911c3ba2986da04bba9b67027149a3604e9875ef7f1d28c66ae739d32933d272c1c4303fe3723ff04a403c65a1722eda82f3bae04236

    Score
    10/10
    raccoonstealer

    • Raccoon

      Simple but powerful infostealer which was very active in 2019.

      stealerraccoon

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

1
T1130

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks