General
-
Target
37ce68189b52816d655532e2723304771fcb89ea074b8af94c34e1062d581397
-
Size
424KB
-
Sample
210926-rt82dsehbr
-
MD5
83a34028d36400a10b39804f690f6d73
-
SHA1
aede5003da296fb809a4b1d00d99f8dd2835f44f
-
SHA256
37ce68189b52816d655532e2723304771fcb89ea074b8af94c34e1062d581397
-
SHA512
78a5f6e95bf20cd1f63da92a1836a24ffebf3a738639b04d7e91177e1d6a4459425a1da07c5d94fce1584f93a87edda10406dbe3a31e4261bd57b169372f9f7c
Static task
static1
Malware Config
Extracted
raccoon
f6d7183c9e82d2a9b81e6c0608450aa66cefb51f
-
url4cnc
https://t.me/justoprostohello
Targets
-
-
Target
37ce68189b52816d655532e2723304771fcb89ea074b8af94c34e1062d581397
-
Size
424KB
-
MD5
83a34028d36400a10b39804f690f6d73
-
SHA1
aede5003da296fb809a4b1d00d99f8dd2835f44f
-
SHA256
37ce68189b52816d655532e2723304771fcb89ea074b8af94c34e1062d581397
-
SHA512
78a5f6e95bf20cd1f63da92a1836a24ffebf3a738639b04d7e91177e1d6a4459425a1da07c5d94fce1584f93a87edda10406dbe3a31e4261bd57b169372f9f7c
-
suricata: ET MALWARE Win32.Raccoon Stealer CnC Activity (dependency download)
suricata: ET MALWARE Win32.Raccoon Stealer CnC Activity (dependency download)
-
suricata: ET MALWARE Win32.Raccoon Stealer Data Exfil Attempt
suricata: ET MALWARE Win32.Raccoon Stealer Data Exfil Attempt
-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-