General
-
Target
05a8bb09740271c4793573231b58577e.exe
-
Size
430KB
-
Sample
210926-r757naehdq
-
MD5
05a8bb09740271c4793573231b58577e
-
SHA1
caffe449a6a5a6a513d12880b697d81660ac36c5
-
SHA256
e6f3e1291f3494f364778772237bdbf4a3c943c64cde34b53a2ab6d809fd5ae8
-
SHA512
3055f3c16b8381c39a657fac88a3de179cd65c79f974d0cd57a301cbee0d7e0bb0b5d051f44495872b18f355bf9f66fa7f73350c721072698f43ca97d373f163
Static task
static1
Behavioral task
behavioral1
Sample
05a8bb09740271c4793573231b58577e.exe
Resource
win7-en-20210920
Malware Config
Extracted
raccoon
f6d7183c9e82d2a9b81e6c0608450aa66cefb51f
-
url4cnc
https://t.me/justoprostohello
Targets
-
-
Target
05a8bb09740271c4793573231b58577e.exe
-
Size
430KB
-
MD5
05a8bb09740271c4793573231b58577e
-
SHA1
caffe449a6a5a6a513d12880b697d81660ac36c5
-
SHA256
e6f3e1291f3494f364778772237bdbf4a3c943c64cde34b53a2ab6d809fd5ae8
-
SHA512
3055f3c16b8381c39a657fac88a3de179cd65c79f974d0cd57a301cbee0d7e0bb0b5d051f44495872b18f355bf9f66fa7f73350c721072698f43ca97d373f163
-
suricata: ET MALWARE Win32.Raccoon Stealer CnC Activity (dependency download)
suricata: ET MALWARE Win32.Raccoon Stealer CnC Activity (dependency download)
-
suricata: ET MALWARE Win32.Raccoon Stealer Data Exfil Attempt
suricata: ET MALWARE Win32.Raccoon Stealer Data Exfil Attempt
-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-