raccoon | ee43e4bea26e89a991479e9bf7cfa6b41e497cb53600f7ea63607cf9fb7d48b7 | Triage

Sharing

General

Target

ee43e4bea26e89a991479e9bf7cfa6b41e497cb53600f7ea63607cf9fb7d48b7
Size

530KB
Sample

211118-fggwlaeff8
MD5

7316e5a6d5dd5075e9678dfc18d56363
SHA1

fc72849303412e6bfe07e8c6bddaa286db8ddb6d
SHA256

ee43e4bea26e89a991479e9bf7cfa6b41e497cb53600f7ea63607cf9fb7d48b7
SHA512

8c65fc2bb783202da6b5f377250ca228f23d970f618e1bcc145f22b233da38908134c1e4d58dea83f14a0dfad2687bcd60b34f21c2b166628457236505cfa99d

Score

10^/10

raccoon 14b265e74e2847e8408db7ca21fe6fe2e9ab5767 stealer

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

14b265e74e2847e8408db7ca21fe6fe2e9ab5767

Attributes

url4cnc
http://91.219.236.162/masterdanteloma
http://185.163.47.176/masterdanteloma
http://193.38.54.238/masterdanteloma
http://74.119.192.122/masterdanteloma
http://91.219.236.240/masterdanteloma
https://t.me/masterdanteloma

rc4.plain

rc4.plain

Targets

- Target
  
  ee43e4bea26e89a991479e9bf7cfa6b41e497cb53600f7ea63607cf9fb7d48b7
- Size
  
  530KB
- MD5
  
  7316e5a6d5dd5075e9678dfc18d56363
- SHA1
  
  fc72849303412e6bfe07e8c6bddaa286db8ddb6d
- SHA256
  
  ee43e4bea26e89a991479e9bf7cfa6b41e497cb53600f7ea63607cf9fb7d48b7
- SHA512
  
  8c65fc2bb783202da6b5f377250ca228f23d970f618e1bcc145f22b233da38908134c1e4d58dea83f14a0dfad2687bcd60b34f21c2b166628457236505cfa99d
Score

10^/10

raccoon 14b265e74e2847e8408db7ca21fe6fe2e9ab5767 stealer
- Raccoon
  Simple but powerful infostealer which was very active in 2019.
  stealer raccoon
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

raccoon14b265e74e2847e8408db7ca21fe6fe2e9ab5767stealer