raccoon | 511115b73de6539b0f552bd2c092e4edf5f561b324a6f64fedb49fdaf2d0b7ee | Triage

Sharing

General

Target

511115b73de6539b0f552bd2c092e4edf5f561b324a6f64fedb49fdaf2d0b7ee
Size

500KB
Sample

211115-lw5h4ahgg7
MD5

3a7cf9d0a0f099dc12699f77a1dd204c
SHA1

3d852a59c4404a00081663807bddf67a7418e235
SHA256

511115b73de6539b0f552bd2c092e4edf5f561b324a6f64fedb49fdaf2d0b7ee
SHA512

8127b64d4abfa81216cb61e443f36e114919cc2ef83620b091f793719f9d6ffd1810c80b14cd29b9cad25264089f383fd31de1eb8c1869809d3d3c5c9223ffd2

Score

10^/10

raccoon 675718a5f2ce6d3cacf6cb04a512f5637eae995f stealer

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

675718a5f2ce6d3cacf6cb04a512f5637eae995f

Attributes

url4cnc
http://91.219.236.27/agrybirdsgamerept
http://5.181.156.92/agrybirdsgamerept
http://91.219.236.207/agrybirdsgamerept
http://185.225.19.18/agrybirdsgamerept
http://91.219.237.227/agrybirdsgamerept
http://185.163.47.176/agrybirdsgamerept

rc4.plain

rc4.plain

Targets

- Target
  
  511115b73de6539b0f552bd2c092e4edf5f561b324a6f64fedb49fdaf2d0b7ee
- Size
  
  500KB
- MD5
  
  3a7cf9d0a0f099dc12699f77a1dd204c
- SHA1
  
  3d852a59c4404a00081663807bddf67a7418e235
- SHA256
  
  511115b73de6539b0f552bd2c092e4edf5f561b324a6f64fedb49fdaf2d0b7ee
- SHA512
  
  8127b64d4abfa81216cb61e443f36e114919cc2ef83620b091f793719f9d6ffd1810c80b14cd29b9cad25264089f383fd31de1eb8c1869809d3d3c5c9223ffd2
Score

10^/10

raccoon 675718a5f2ce6d3cacf6cb04a512f5637eae995f stealer
- Raccoon
  Simple but powerful infostealer which was very active in 2019.
  stealer raccoon
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

raccoon675718a5f2ce6d3cacf6cb04a512f5637eae995fstealer