raccoon | 9041b7461ae90df4509ac11c053b9f3840ad5be3f9e8a7f3a9ff29f7c3a56916 | Triage

Sharing

General

Target

9041b7461ae90df4509ac11c053b9f3840ad5be3f9e8a7f3a9ff29f7c3a56916
Size

500KB
Sample

211115-k82sashgc4
MD5

ca4e4e0a120f9c7128e3764162c419ca
SHA1

a01e0574b6d5d714931f5858b6c66250f64da74a
SHA256

9041b7461ae90df4509ac11c053b9f3840ad5be3f9e8a7f3a9ff29f7c3a56916
SHA512

fb7fd38daa1bb32164e952cd43ef269ebf0958944056d26494712b79f96fed831ec86a818194178d5b8b8fbddac2ac15242f6eafe8011290e5eaad85cd28c507

Score

10^/10

raccoon 675718a5f2ce6d3cacf6cb04a512f5637eae995f stealer

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

675718a5f2ce6d3cacf6cb04a512f5637eae995f

Attributes

url4cnc
http://91.219.236.27/agrybirdsgamerept
http://5.181.156.92/agrybirdsgamerept
http://91.219.236.207/agrybirdsgamerept
http://185.225.19.18/agrybirdsgamerept
http://91.219.237.227/agrybirdsgamerept
http://185.163.47.176/agrybirdsgamerept

rc4.plain

rc4.plain

Targets

- Target
  
  9041b7461ae90df4509ac11c053b9f3840ad5be3f9e8a7f3a9ff29f7c3a56916
- Size
  
  500KB
- MD5
  
  ca4e4e0a120f9c7128e3764162c419ca
- SHA1
  
  a01e0574b6d5d714931f5858b6c66250f64da74a
- SHA256
  
  9041b7461ae90df4509ac11c053b9f3840ad5be3f9e8a7f3a9ff29f7c3a56916
- SHA512
  
  fb7fd38daa1bb32164e952cd43ef269ebf0958944056d26494712b79f96fed831ec86a818194178d5b8b8fbddac2ac15242f6eafe8011290e5eaad85cd28c507
Score

10^/10

raccoon 675718a5f2ce6d3cacf6cb04a512f5637eae995f stealer
- Raccoon
  Simple but powerful infostealer which was very active in 2019.
  stealer raccoon
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

raccoon675718a5f2ce6d3cacf6cb04a512f5637eae995fstealer