Overview

overview

10

Static

static

dridex

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dd2f2ec66b440c95c3ff38139baa7893c843cd0b8ee6cb78c6f4e7b3ccda4dbb

  • Size

    421KB

  • Sample

    210907-2lknyagehj

  • MD5

    a836dd578e9c7f5402c39abd6b2c10ff

  • SHA1

    288dceed734aef555ff55bf983d5d813fe70abf1

  • SHA256

    dd2f2ec66b440c95c3ff38139baa7893c843cd0b8ee6cb78c6f4e7b3ccda4dbb

  • SHA512

    ec7a809e771260a496c66b5f87e45b883ebb901fffca8121fdc3bbb5527e769a0ba49731a740ad4000cf215d233a70dc82a0c92c5fb19d96af2db07be0eb3126

Score
10/10
raccoon93d3ccba4a3cbd5e268873fc1760b2335272e198stealer

Malware Config

Extracted

Family

raccoon

Botnet

93d3ccba4a3cbd5e268873fc1760b2335272e198

Attributes
  • url4cnc

    https://telete.in/opa4kiprivatem

rc4.plain
rc4.plain

Targets

    • Target

      dd2f2ec66b440c95c3ff38139baa7893c843cd0b8ee6cb78c6f4e7b3ccda4dbb

    • Size

      421KB

    • MD5

      a836dd578e9c7f5402c39abd6b2c10ff

    • SHA1

      288dceed734aef555ff55bf983d5d813fe70abf1

    • SHA256

      dd2f2ec66b440c95c3ff38139baa7893c843cd0b8ee6cb78c6f4e7b3ccda4dbb

    • SHA512

      ec7a809e771260a496c66b5f87e45b883ebb901fffca8121fdc3bbb5527e769a0ba49731a740ad4000cf215d233a70dc82a0c92c5fb19d96af2db07be0eb3126

    Score
    10/10
    raccoon93d3ccba4a3cbd5e268873fc1760b2335272e198stealer

    • Raccoon

      Simple but powerful infostealer which was very active in 2019.

      stealerraccoon

    • Suspicious use of NtCreateProcessExOtherParentProcess

    behavioral1

MITRE ATT&CK Matrix

Tasks