General

  • Target

    1E249D1ADE1A739B6CEC129A3C23BE53.exe

  • Size

    455KB

  • Sample

    210723-l25vk94ysa

  • MD5

    1e249d1ade1a739b6cec129a3c23be53

  • SHA1

    4b88938106a27e1c3545abb155e1d6710ffcc982

  • SHA256

    7c255bf677250d67574ee5286b8896b5c51442bc33dcb88e85743db0d4e39729

  • SHA512

    e9ff064af5cae5f6eba1cd7032a5e36095cb9f7e8779e0732964499acf4923dcd2de0ab7c3ed4f81901668b5bc8924015c70456bb1b5800d4f4b7edc1e51f75d

Malware Config

Extracted

Family

raccoon

Botnet

ed6b14fc66194647043816704dabe6e1f086f173

Attributes
  • url4cnc

    https://telete.in/jdiamond13

rc4.plain
rc4.plain

Targets

    • Target

      1E249D1ADE1A739B6CEC129A3C23BE53.exe

    • Size

      455KB

    • MD5

      1e249d1ade1a739b6cec129a3c23be53

    • SHA1

      4b88938106a27e1c3545abb155e1d6710ffcc982

    • SHA256

      7c255bf677250d67574ee5286b8896b5c51442bc33dcb88e85743db0d4e39729

    • SHA512

      e9ff064af5cae5f6eba1cd7032a5e36095cb9f7e8779e0732964499acf4923dcd2de0ab7c3ed4f81901668b5bc8924015c70456bb1b5800d4f4b7edc1e51f75d

    • Raccoon

      Simple but powerful infostealer which was very active in 2019.

    • Raccoon Stealer Payload

MITRE ATT&CK Matrix ATT&CK v6

Defense Evasion

Install Root Certificate

1
T1130

Modify Registry

1
T1112

Tasks