raccoon | b8f94d10ebb337fbe14eaa77b194530cfd5235c63d7ec397ca5a0c96c24808df | Triage

Submit
Reports

Overview

overview

Static

static

usfive_202...1).exe

windows7_x64

usfive_202...1).exe

windows10_x64

Analysis

max time kernel
150s
max time network
148s
platform
windows7_x64
resource
win7-en-20210920
submitted
26-09-2021 12:06

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

usfive_20210920-195834(1).exe

Resource

win7-en-20210920

raccoon a8a04412b0db5dca0e2f7ee3c6455e08fdf3f698 stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

usfive_20210920-195834(1).exe

Resource

win10-en-20210920

raccoon a8a04412b0db5dca0e2f7ee3c6455e08fdf3f698 stealer

windows10_x64

0 signatures

0 seconds

Report Analysis Logs

General

Target

usfive_20210920-195834(1).exe
Size

524KB
MD5

9d522bab469879058bbd114c0e94ccbf
SHA1

3d2fad37c61aaa51feb799011b6ee80b203e9b3b
SHA256

b8f94d10ebb337fbe14eaa77b194530cfd5235c63d7ec397ca5a0c96c24808df
SHA512

302f8ff81069997fdcff091cd2c2c7b1ac6697c70c3c3fe5e50a6bb2b6917ddeaef4b9c5508c5e47a0dc36af4cc077f8cd72eb80561d096206faade89bef67a6

Score

10^/10

raccoon a8a04412b0db5dca0e2f7ee3c6455e08fdf3f698 stealer

Malware Config

Extracted

Family

raccoon

Botnet

a8a04412b0db5dca0e2f7ee3c6455e08fdf3f698

Attributes

url4cnc
https://telete.in/h_electricryptors2

rc4.plain

rc4.plain

Signatures

Raccoon
Simple but powerful infostealer which was very active in 2019.
stealer raccoon

Processes

C:\Users\Admin\AppData\Local\Temp\usfive_20210920-195834(1).exe
"C:\Users\Admin\AppData\Local\Temp\usfive_20210920-195834(1).exe"
1⤵
PID:1044

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1044-54-0x0000000075871000-0x0000000075873000-memory.dmp

Filesize
8KB

Download
memory/1044-56-0x0000000000400000-0x0000000000494000-memory.dmp

Filesize
592KB

Download
memory/1044-55-0x0000000000270000-0x0000000000300000-memory.dmp

Filesize
576KB

Download

© 2018-2024

Terms | Privacy