General
-
Target
12f0a80b6374b38a3997a7ef4528f26ccbca664b26e48533e7d1f36c78da76f4
-
Size
310KB
-
Sample
210414-t9tgtzd4en
-
MD5
c6c55d4ec62be18675a039e710ab6ae2
-
SHA1
9eed727a54747559df98c24a3f926cf950999587
-
SHA256
12f0a80b6374b38a3997a7ef4528f26ccbca664b26e48533e7d1f36c78da76f4
-
SHA512
6626e7a6f96ff572154bbe6b944ce3d4651bdaf9c9782d34fa7dd60bf339333ac3251c9487ffba3afa59e002dbc538594aa35b68a83e023c42d43583ee15a7e0
Static task
static1
Behavioral task
behavioral1
Sample
12f0a80b6374b38a3997a7ef4528f26ccbca664b26e48533e7d1f36c78da76f4.exe
Resource
win7v20210410
Behavioral task
behavioral2
Sample
12f0a80b6374b38a3997a7ef4528f26ccbca664b26e48533e7d1f36c78da76f4.exe
Resource
win10v20210410
Malware Config
Extracted
raccoon
16992cd33145ccbb6feeacb4e84400a56448fa14
-
url4cnc
https://telete.in/baudemars
Targets
-
-
Target
12f0a80b6374b38a3997a7ef4528f26ccbca664b26e48533e7d1f36c78da76f4
-
Size
310KB
-
MD5
c6c55d4ec62be18675a039e710ab6ae2
-
SHA1
9eed727a54747559df98c24a3f926cf950999587
-
SHA256
12f0a80b6374b38a3997a7ef4528f26ccbca664b26e48533e7d1f36c78da76f4
-
SHA512
6626e7a6f96ff572154bbe6b944ce3d4651bdaf9c9782d34fa7dd60bf339333ac3251c9487ffba3afa59e002dbc538594aa35b68a83e023c42d43583ee15a7e0
-
Executes dropped EXE
-
Deletes itself
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Legitimate hosting services abused for malware hosting/C2
-