raccoon | 47b3c9c25674edfd50d6f7972f11a9dfefafc69534e024346828190786bf8074 | Triage

Sharing

General

Target

47b3c9c25674edfd50d6f7972f11a9dfefafc69534e024346828190786bf8074
Size

500KB
Sample

211115-mdqgwshhc4
MD5

09ef6aa18d45169580717589485f29ec
SHA1

96b67ff327f6dd3fa430f45df0fddda74529d7e9
SHA256

47b3c9c25674edfd50d6f7972f11a9dfefafc69534e024346828190786bf8074
SHA512

295689d583223a79cd3d3cf66c0212608cf85178b9c87fc33ba82ef1eb58492a4594ff1e55a180bcd5978705166c7d5d92ef035a28268b4aa7b30908619fa449

Score

10^/10

raccoon 675718a5f2ce6d3cacf6cb04a512f5637eae995f stealer

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

675718a5f2ce6d3cacf6cb04a512f5637eae995f

Attributes

url4cnc
http://91.219.236.27/agrybirdsgamerept
http://5.181.156.92/agrybirdsgamerept
http://91.219.236.207/agrybirdsgamerept
http://185.225.19.18/agrybirdsgamerept
http://91.219.237.227/agrybirdsgamerept
http://185.163.47.176/agrybirdsgamerept

rc4.plain

rc4.plain

Targets

- Target
  
  47b3c9c25674edfd50d6f7972f11a9dfefafc69534e024346828190786bf8074
- Size
  
  500KB
- MD5
  
  09ef6aa18d45169580717589485f29ec
- SHA1
  
  96b67ff327f6dd3fa430f45df0fddda74529d7e9
- SHA256
  
  47b3c9c25674edfd50d6f7972f11a9dfefafc69534e024346828190786bf8074
- SHA512
  
  295689d583223a79cd3d3cf66c0212608cf85178b9c87fc33ba82ef1eb58492a4594ff1e55a180bcd5978705166c7d5d92ef035a28268b4aa7b30908619fa449
Score

10^/10

raccoon 675718a5f2ce6d3cacf6cb04a512f5637eae995f stealer
- Raccoon
  Simple but powerful infostealer which was very active in 2019.
  stealer raccoon
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

raccoon675718a5f2ce6d3cacf6cb04a512f5637eae995fstealer