Overview

overview

10

Static

static

dridex

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6f22240fb4752071eb6e1a3de7c105d4009f3b0e59a897d363fed97309543107

  • Size

    500KB

  • Sample

    211114-wsgmzadfel

  • MD5

    28707a111e2d39940a87878f490d8d27

  • SHA1

    14adb3e80e95ed0d5972297591caa3981d6a3701

  • SHA256

    6f22240fb4752071eb6e1a3de7c105d4009f3b0e59a897d363fed97309543107

  • SHA512

    892313157ecc8fcf53f0373839a7f18032354166c8f8ff40400bdbccc1b6da40e1b942fc89956b8ca5e22d80f7f8d5c57f2396e2d77b3442f450031b47ba0f1d

Score
10/10
raccoon675718a5f2ce6d3cacf6cb04a512f5637eae995fstealer

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

675718a5f2ce6d3cacf6cb04a512f5637eae995f

Attributes
  • url4cnc

    http://91.219.236.27/agrybirdsgamerept

    http://5.181.156.92/agrybirdsgamerept

    http://91.219.236.207/agrybirdsgamerept

    http://185.225.19.18/agrybirdsgamerept

    http://91.219.237.227/agrybirdsgamerept

    http://185.163.47.176/agrybirdsgamerept

rc4.plain
rc4.plain

Targets

    • Target

      6f22240fb4752071eb6e1a3de7c105d4009f3b0e59a897d363fed97309543107

    • Size

      500KB

    • MD5

      28707a111e2d39940a87878f490d8d27

    • SHA1

      14adb3e80e95ed0d5972297591caa3981d6a3701

    • SHA256

      6f22240fb4752071eb6e1a3de7c105d4009f3b0e59a897d363fed97309543107

    • SHA512

      892313157ecc8fcf53f0373839a7f18032354166c8f8ff40400bdbccc1b6da40e1b942fc89956b8ca5e22d80f7f8d5c57f2396e2d77b3442f450031b47ba0f1d

    Score
    10/10
    raccoon675718a5f2ce6d3cacf6cb04a512f5637eae995fstealer

    • Raccoon

      Simple but powerful infostealer which was very active in 2019.

      stealerraccoon
    behavioral1

MITRE ATT&CK Matrix

Tasks