raccoon | 6bfaeac753c4a2d4c1e661d394a9ca0380e5a65faef740be6c8ae5f62d24e76d | Triage

Submit
Reports

Overview

overview

Static

static

usfive_202...29.exe

windows7_x64

usfive_202...29.exe

windows10_x64

Analysis

max time kernel
159s
max time network
190s
platform
windows7_x64
resource
win7v20210408
submitted
26-09-2021 11:46

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

usfive_20210917-222929.exe

Resource

win7v20210408

raccoon a8a04412b0db5dca0e2f7ee3c6455e08fdf3f698 stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

usfive_20210917-222929.exe

Resource

win10-en-20210920

raccoon a8a04412b0db5dca0e2f7ee3c6455e08fdf3f698 stealer

windows10_x64

0 signatures

0 seconds

Report Analysis Logs

General

Target

usfive_20210917-222929.exe
Size

473KB
MD5

2b614fe8a979a769ad0204a8182dc2d6
SHA1

b7ef265a1e18e8d000725f790f34fbc454a5fb02
SHA256

6bfaeac753c4a2d4c1e661d394a9ca0380e5a65faef740be6c8ae5f62d24e76d
SHA512

e2ea4a6a2f9475c16b3bb3c7ec5a58535ff522ad76a44e1c4b54d5d4e2927d43a78a45924d2014caa894eb18b5c73395633766a6ef07664abfea33bf20e506f0

Score

10^/10

raccoon a8a04412b0db5dca0e2f7ee3c6455e08fdf3f698 stealer

Malware Config

Extracted

Family

raccoon

Botnet

a8a04412b0db5dca0e2f7ee3c6455e08fdf3f698

Attributes

url4cnc
https://telete.in/h_electricryptors2

rc4.plain

rc4.plain

Signatures

Raccoon
Simple but powerful infostealer which was very active in 2019.
stealer raccoon

Processes

C:\Users\Admin\AppData\Local\Temp\usfive_20210917-222929.exe
"C:\Users\Admin\AppData\Local\Temp\usfive_20210917-222929.exe"
1⤵
PID:1240

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1240-60-0x0000000074D91000-0x0000000074D93000-memory.dmp

Filesize
8KB

Download
memory/1240-61-0x0000000000320000-0x00000000003B0000-memory.dmp

Filesize
576KB

Download
memory/1240-62-0x0000000000400000-0x00000000004FC000-memory.dmp

Filesize
1008KB

Download

© 2018-2024

Terms | Privacy