raccoon | 3289177fbf7f989eb98c4de05e318909ed2f0689e908c4ef42e489d83db12f87 | Triage

Sharing

General

Target

3289177fbf7f989eb98c4de05e318909ed2f0689e908c4ef42e489d83db12f87
Size

441KB
Sample

211119-ra872sded2
MD5

5d358f809709727859e8b9479139e9b0
SHA1

e69163bfb94b10e9ab7df118f75dc3c4b02ef792
SHA256

3289177fbf7f989eb98c4de05e318909ed2f0689e908c4ef42e489d83db12f87
SHA512

169aec37f75470883c304435a78c5a7840264381e41334fdac2b76a3a3ccc0078e5c02049d2e69bd4694e942382075e235e213b010b00004e830b4e9e4c19ea0

Score

10^/10

raccoon 14b265e74e2847e8408db7ca21fe6fe2e9ab5767 stealer

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

14b265e74e2847e8408db7ca21fe6fe2e9ab5767

Attributes

url4cnc
http://91.219.236.162/masterdanteloma
http://185.163.47.176/masterdanteloma
http://193.38.54.238/masterdanteloma
http://74.119.192.122/masterdanteloma
http://91.219.236.240/masterdanteloma
https://t.me/masterdanteloma

rc4.plain

rc4.plain

Targets

- Target
  
  3289177fbf7f989eb98c4de05e318909ed2f0689e908c4ef42e489d83db12f87
- Size
  
  441KB
- MD5
  
  5d358f809709727859e8b9479139e9b0
- SHA1
  
  e69163bfb94b10e9ab7df118f75dc3c4b02ef792
- SHA256
  
  3289177fbf7f989eb98c4de05e318909ed2f0689e908c4ef42e489d83db12f87
- SHA512
  
  169aec37f75470883c304435a78c5a7840264381e41334fdac2b76a3a3ccc0078e5c02049d2e69bd4694e942382075e235e213b010b00004e830b4e9e4c19ea0
Score

10^/10

raccoon 14b265e74e2847e8408db7ca21fe6fe2e9ab5767 stealer
- Raccoon
  Simple but powerful infostealer which was very active in 2019.
  stealer raccoon
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

raccoon14b265e74e2847e8408db7ca21fe6fe2e9ab5767stealer