raccoon | 2127488be3475141a8a192e1f53f066040fe30b1c2800c0309986580d7d54ba9 | Triage

Sharing

General

Target

2127488be3475141a8a192e1f53f066040fe30b1c2800c0309986580d7d54ba9
Size

450KB
Sample

211119-xg3lqsbcel
MD5

1bd7099ccc6cc49e0d58c043cf54074c
SHA1

4d658f70ac222dc0dba44aeb763f8c6f2504c69f
SHA256

2127488be3475141a8a192e1f53f066040fe30b1c2800c0309986580d7d54ba9
SHA512

ec4d40c3e087bc3f2b739fbc12b98d4b011f621a356dc106e9e1031e6b9c712ca0315b27f4e8a17962c4b7e2c075dfdcedb4c0c8cec69ac43685824e19d9387a

Score

10^/10

raccoon 14b265e74e2847e8408db7ca21fe6fe2e9ab5767 stealer

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

14b265e74e2847e8408db7ca21fe6fe2e9ab5767

Attributes

url4cnc
http://91.219.236.162/masterdanteloma
http://185.163.47.176/masterdanteloma
http://193.38.54.238/masterdanteloma
http://74.119.192.122/masterdanteloma
http://91.219.236.240/masterdanteloma
https://t.me/masterdanteloma

rc4.plain

rc4.plain

Targets

- Target
  
  2127488be3475141a8a192e1f53f066040fe30b1c2800c0309986580d7d54ba9
- Size
  
  450KB
- MD5
  
  1bd7099ccc6cc49e0d58c043cf54074c
- SHA1
  
  4d658f70ac222dc0dba44aeb763f8c6f2504c69f
- SHA256
  
  2127488be3475141a8a192e1f53f066040fe30b1c2800c0309986580d7d54ba9
- SHA512
  
  ec4d40c3e087bc3f2b739fbc12b98d4b011f621a356dc106e9e1031e6b9c712ca0315b27f4e8a17962c4b7e2c075dfdcedb4c0c8cec69ac43685824e19d9387a
Score

10^/10

raccoon 14b265e74e2847e8408db7ca21fe6fe2e9ab5767 stealer
- Raccoon
  Simple but powerful infostealer which was very active in 2019.
  stealer raccoon
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

raccoon14b265e74e2847e8408db7ca21fe6fe2e9ab5767stealer