raccoon | b3c046d2bc27f2cc449f7019445756b4a1da4cfc76fa9f8a1d729348172169e1 | Triage

Submit
Reports

Overview

overview

Static

static

usfive_202...15.exe

windows7_x64

usfive_202...15.exe

windows10_x64

Analysis

max time kernel
147s
max time network
156s
platform
windows10_x64
resource
win10-en-20210920
submitted
26-09-2021 11:47

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

usfive_20210918-180515.exe

Resource

win7v20210408

raccoon a8a04412b0db5dca0e2f7ee3c6455e08fdf3f698 stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

usfive_20210918-180515.exe

Resource

win10-en-20210920

raccoon a8a04412b0db5dca0e2f7ee3c6455e08fdf3f698 stealer

windows10_x64

0 signatures

0 seconds

Report Analysis Logs

General

Target

usfive_20210918-180515.exe
Size

494KB
MD5

c0ef94225116a8f09c45a4f2c8f211c5
SHA1

601dc534f03a2862ce4d59fa7edc40dff2a1581f
SHA256

b3c046d2bc27f2cc449f7019445756b4a1da4cfc76fa9f8a1d729348172169e1
SHA512

6629cbce42844332bfc828772ceaca45fcd943dbea242ddb82e4ba98381de6709536ae7f1fe32841b730a1109605125d3a2f3b757acb6d2ee8537f18079f66d5

Score

10^/10

raccoon a8a04412b0db5dca0e2f7ee3c6455e08fdf3f698 stealer

Malware Config

Extracted

Family

raccoon

Botnet

a8a04412b0db5dca0e2f7ee3c6455e08fdf3f698

Attributes

url4cnc
https://telete.in/h_electricryptors2

rc4.plain

rc4.plain

Signatures

Raccoon
Simple but powerful infostealer which was very active in 2019.
stealer raccoon

Processes

C:\Users\Admin\AppData\Local\Temp\usfive_20210918-180515.exe
"C:\Users\Admin\AppData\Local\Temp\usfive_20210918-180515.exe"
1⤵
PID:1832

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1832-116-0x0000000000720000-0x00000000007B0000-memory.dmp

Filesize
576KB

Download
memory/1832-117-0x0000000000400000-0x0000000000493000-memory.dmp

Filesize
588KB

Download

© 2018-2024

Terms | Privacy