Description
Simple but powerful infostealer which was very active in 2019.
c8457e14bf16d40d5e7f36f81982957ffa6cd2fe17a7c1a37333a133effc41a8
512KB
211002-l7m37aecfj
de53e8d73fe96e1ceab93e3aee4751ec
98e010e66213ba828ead9debe86263bca9407509
c8457e14bf16d40d5e7f36f81982957ffa6cd2fe17a7c1a37333a133effc41a8
e2e692971b0fb5b1244b08e952045f6b342f968a2f5ba8f3d28b3e4cd0bf34af89c63a1923ca16991c43e6376cbab113b3c43d194dc8639ce8d04881bfdc95c5
Family | raccoon |
Version | 1.8.2 |
Botnet | fd16367b73441d6f39c715f71a74a399a84f0b41 |
Attributes |
url4cnc http://teletop.top/terra11nc http://teleta.top/terra11nc https://t.me/terra11nc |
rc4.plain |
|
rc4.plain |
|
c8457e14bf16d40d5e7f36f81982957ffa6cd2fe17a7c1a37333a133effc41a8
de53e8d73fe96e1ceab93e3aee4751ec
512KB
98e010e66213ba828ead9debe86263bca9407509
c8457e14bf16d40d5e7f36f81982957ffa6cd2fe17a7c1a37333a133effc41a8
e2e692971b0fb5b1244b08e952045f6b342f968a2f5ba8f3d28b3e4cd0bf34af89c63a1923ca16991c43e6376cbab113b3c43d194dc8639ce8d04881bfdc95c5
Simple but powerful infostealer which was very active in 2019.
suricata: ET MALWARE Win32.Raccoon Stealer CnC Activity (dependency download)
suricata: ET MALWARE Win32.Raccoon Stealer Data Exfil Attempt
Email clients store some user data on disk where infostealers will often target it.
Infostealers often target stored browser data, which can include saved credentials etc.
Looks up Uninstall key entries in the registry to enumerate software on the system.