raccoon | b3596656f7c4c056325e161c0e5eb5ea4eaf494a3c89d6f227d2e2d6b3c5bf96 | Triage

Submit
Reports

Overview

overview

Static

static

79e37be061...a6.exe

windows7_x64

79e37be061...a6.exe

windows10_x64

Analysis

max time kernel
145s
max time network
151s
platform
windows10_x64
resource
win10v20210408
submitted
31-05-2021 07:12

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

79e37be0611b42d650e8fdc6c026dda6.exe

Resource

win7v20210408

raccoon a5cce470ad0d57aff9fa94b5ee2c0c1fc2d802af stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

79e37be0611b42d650e8fdc6c026dda6.exe

Resource

win10v20210408

raccoon a5cce470ad0d57aff9fa94b5ee2c0c1fc2d802af stealer

windows10_x64

0 signatures

0 seconds

Report Analysis Logs

General

Target

79e37be0611b42d650e8fdc6c026dda6.exe
Size

622KB
MD5

79e37be0611b42d650e8fdc6c026dda6
SHA1

d416eed8728d11b2280e601709acbeef9dad77e0
SHA256

b3596656f7c4c056325e161c0e5eb5ea4eaf494a3c89d6f227d2e2d6b3c5bf96
SHA512

190847476a50bf75ad4fee5c967221a81520fe48dbe43462ea29dedde97e8aeea0da599fafca36205ca225c910c284042902fd0dfd1cbe22a11d86ce61a2452f

Score

10^/10

raccoon a5cce470ad0d57aff9fa94b5ee2c0c1fc2d802af stealer

Malware Config

Extracted

Family

raccoon

Botnet

a5cce470ad0d57aff9fa94b5ee2c0c1fc2d802af

Attributes

url4cnc
https://tttttt.me/baudemars

rc4.plain

rc4.plain

Signatures

Raccoon
Simple but powerful infostealer which was very active in 2019.
stealer raccoon

Processes

C:\Users\Admin\AppData\Local\Temp\79e37be0611b42d650e8fdc6c026dda6.exe
"C:\Users\Admin\AppData\Local\Temp\79e37be0611b42d650e8fdc6c026dda6.exe"
1⤵
PID:632

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/632-114-0x00000000022A0000-0x0000000002331000-memory.dmp

Filesize
580KB

Download
memory/632-115-0x0000000000400000-0x00000000004A4000-memory.dmp

Filesize
656KB

Download

© 2018-2024

Terms | Privacy