Overview

overview

10

Static

static

dridex

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    aac731bb54c6d39f286068cf0b5c59189c5d21d1c95fd8c2f7b5c53e6d29564c

  • Size

    501KB

  • Sample

    211115-falwzahcb8

  • MD5

    5c912a56509dc9fc4671e1d058e4b3f1

  • SHA1

    5706969d7c1d385db272630299d5e6aec2c522a5

  • SHA256

    aac731bb54c6d39f286068cf0b5c59189c5d21d1c95fd8c2f7b5c53e6d29564c

  • SHA512

    ecfac3239012c9e32eb1553035c5c196edd01207434e70de8cb8895f19bcf2e00461c948e0c0c8d036bbe92a9e6cd7376c32189839859649abb95307abc7f392

Score
10/10
raccoon675718a5f2ce6d3cacf6cb04a512f5637eae995fstealer

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

675718a5f2ce6d3cacf6cb04a512f5637eae995f

Attributes
  • url4cnc

    http://91.219.236.27/agrybirdsgamerept

    http://5.181.156.92/agrybirdsgamerept

    http://91.219.236.207/agrybirdsgamerept

    http://185.225.19.18/agrybirdsgamerept

    http://91.219.237.227/agrybirdsgamerept

    http://185.163.47.176/agrybirdsgamerept

rc4.plain
rc4.plain

Targets

    • Target

      aac731bb54c6d39f286068cf0b5c59189c5d21d1c95fd8c2f7b5c53e6d29564c

    • Size

      501KB

    • MD5

      5c912a56509dc9fc4671e1d058e4b3f1

    • SHA1

      5706969d7c1d385db272630299d5e6aec2c522a5

    • SHA256

      aac731bb54c6d39f286068cf0b5c59189c5d21d1c95fd8c2f7b5c53e6d29564c

    • SHA512

      ecfac3239012c9e32eb1553035c5c196edd01207434e70de8cb8895f19bcf2e00461c948e0c0c8d036bbe92a9e6cd7376c32189839859649abb95307abc7f392

    Score
    10/10
    raccoon675718a5f2ce6d3cacf6cb04a512f5637eae995fstealer

    • Raccoon

      Simple but powerful infostealer which was very active in 2019.

      stealerraccoon
    behavioral1

MITRE ATT&CK Matrix

Tasks