raccoon | 7c255bf677250d67574ee5286b8896b5c51442bc33dcb88e85743db0d4e39729 | Triage

Sharing

General

Target

1E249D1ADE1A739B6CEC129A3C23BE53.exe
Size

455KB
Sample

210723-l25vk94ysa
MD5

1e249d1ade1a739b6cec129a3c23be53
SHA1

4b88938106a27e1c3545abb155e1d6710ffcc982
SHA256

7c255bf677250d67574ee5286b8896b5c51442bc33dcb88e85743db0d4e39729
SHA512

e9ff064af5cae5f6eba1cd7032a5e36095cb9f7e8779e0732964499acf4923dcd2de0ab7c3ed4f81901668b5bc8924015c70456bb1b5800d4f4b7edc1e51f75d

Score

10^/10

raccoon ed6b14fc66194647043816704dabe6e1f086f173 stealer

Malware Config

Extracted

Family

raccoon

Botnet

ed6b14fc66194647043816704dabe6e1f086f173

Attributes

url4cnc
https://telete.in/jdiamond13

rc4.plain

rc4.plain

Targets

- Target
  
  1E249D1ADE1A739B6CEC129A3C23BE53.exe
- Size
  
  455KB
- MD5
  
  1e249d1ade1a739b6cec129a3c23be53
- SHA1
  
  4b88938106a27e1c3545abb155e1d6710ffcc982
- SHA256
  
  7c255bf677250d67574ee5286b8896b5c51442bc33dcb88e85743db0d4e39729
- SHA512
  
  e9ff064af5cae5f6eba1cd7032a5e36095cb9f7e8779e0732964499acf4923dcd2de0ab7c3ed4f81901668b5bc8924015c70456bb1b5800d4f4b7edc1e51f75d
Score

10^/10

raccoon ed6b14fc66194647043816704dabe6e1f086f173 stealer
- Raccoon
  Simple but powerful infostealer which was very active in 2019.
  stealer raccoon
- Raccoon Stealer Payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

raccooned6b14fc66194647043816704dabe6e1f086f173stealer

behavioral2

raccooned6b14fc66194647043816704dabe6e1f086f173stealer