raccoon | 6f926b4834dd3b967c81cb442fb38f4866f9ca51f2aa83eb32f658e823f5896c | Triage

Sharing

General

Target

6f926b4834dd3b967c81cb442fb38f4866f9ca51f2aa83eb32f658e823f5896c
Size

450KB
Sample

211119-ztcl7abegn
MD5

1f43be09cb20a03029ba2474e7996d9a
SHA1

f2919543f036fcfafc94d5db59d08168891ce108
SHA256

6f926b4834dd3b967c81cb442fb38f4866f9ca51f2aa83eb32f658e823f5896c
SHA512

4bfb7f9c95a7eec1d926169aa1b984ded10720ff89711e3fdc5c899fe202fc80d72e3a8159b0ab5bfe2888691d09c9012359bb10b4402867ef577e1286ad7872

Score

10^/10

raccoon 14b265e74e2847e8408db7ca21fe6fe2e9ab5767 stealer

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

14b265e74e2847e8408db7ca21fe6fe2e9ab5767

Attributes

url4cnc
http://91.219.236.162/masterdanteloma
http://185.163.47.176/masterdanteloma
http://193.38.54.238/masterdanteloma
http://74.119.192.122/masterdanteloma
http://91.219.236.240/masterdanteloma
https://t.me/masterdanteloma

rc4.plain

rc4.plain

Targets

- Target
  
  6f926b4834dd3b967c81cb442fb38f4866f9ca51f2aa83eb32f658e823f5896c
- Size
  
  450KB
- MD5
  
  1f43be09cb20a03029ba2474e7996d9a
- SHA1
  
  f2919543f036fcfafc94d5db59d08168891ce108
- SHA256
  
  6f926b4834dd3b967c81cb442fb38f4866f9ca51f2aa83eb32f658e823f5896c
- SHA512
  
  4bfb7f9c95a7eec1d926169aa1b984ded10720ff89711e3fdc5c899fe202fc80d72e3a8159b0ab5bfe2888691d09c9012359bb10b4402867ef577e1286ad7872
Score

10^/10

raccoon 14b265e74e2847e8408db7ca21fe6fe2e9ab5767 stealer
- Raccoon
  Simple but powerful infostealer which was very active in 2019.
  stealer raccoon
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

raccoon14b265e74e2847e8408db7ca21fe6fe2e9ab5767stealer