Overview

overview

10

Static

static

77a0a643f8...97.exe

windows7_x64

10

77a0a643f8...97.exe

windows10_x64

10

Analysis

  • max time kernel
    149s
  • max time network
    145s
  • platform
    windows7_x64
  • resource
    win7-en-20210920
  • submitted
    26-09-2021 12:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    77a0a643f8ad830df281fbdccbf99497.exe

  • Size

    430KB

  • MD5

    77a0a643f8ad830df281fbdccbf99497

  • SHA1

    e5d69c171af29f3638b7cf38e84b13733380eb56

  • SHA256

    2f289065f7cc6427f609df03d336c1e9626229ba90deb3bc37166c12851bde96

  • SHA512

    751f62b68ef313b66e6d0533cf8b711a6b4408f73168f871251a332a5f612da617a357a75ece696cad82a276da492b9ea6b99aaad9bc73568e1ecce24c8fb844

Score
10/10
raccoonf6d7183c9e82d2a9b81e6c0608450aa66cefb51fstealer

Malware Config

Extracted

Family

raccoon

Botnet

f6d7183c9e82d2a9b81e6c0608450aa66cefb51f

Attributes
  • url4cnc

    https://t.me/justoprostohello

rc4.plain
rc4.plain

Signatures

  • Raccoon

    Simple but powerful infostealer which was very active in 2019.

    stealerraccoon

Processes

  • C:\Users\Admin\AppData\Local\Temp\77a0a643f8ad830df281fbdccbf99497.exe
    "C:\Users\Admin\AppData\Local\Temp\77a0a643f8ad830df281fbdccbf99497.exe"
    1⤵
      PID:1092

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1092-53-0x0000000074B41000-0x0000000074B43000-memory.dmp
      Filesize

      8KB

      Download
    • memory/1092-54-0x00000000002A0000-0x0000000000330000-memory.dmp
      Filesize

      576KB

      Download
    • memory/1092-55-0x0000000000400000-0x00000000004F2000-memory.dmp
      Filesize

      968KB

      Download