Overview

overview

10

Static

static

usfive_202...23.exe

windows7_x64

10

usfive_202...23.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    usfive_20211120-122123

  • Size

    529KB

  • Sample

    211120-sppydsgad4

  • MD5

    3958816e874cc7d5f3fefd540a3e06d5

  • SHA1

    0d198aa1041a1030700ceb9ef33c01a2c5b3d441

  • SHA256

    818419b0d9f4176a991d120b8206a3d6b34d288acf1ca5dda763142cc74559ee

  • SHA512

    07ea36cbc16fbfb479f225b18eb7f9cd02b0fb258edbc9b98a3a9d70bfdefac03f93cf97cbec272f225711d8a986a0a274cc38e2b4b253fdbbbcff4fe26e0427

Score
10/10
raccoon8b6023dd139bdc34aab99c286fae23d1442b4956stealer

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

8b6023dd139bdc34aab99c286fae23d1442b4956

Attributes
  • url4cnc

    http://91.219.236.27/h_electricryptors2

    http://5.181.156.92/h_electricryptors2

    http://91.219.236.207/h_electricryptors2

    http://185.225.19.18/h_electricryptors2

    http://91.219.237.227/h_electricryptors2

    https://t.me/h_electricryptors2

rc4.plain
rc4.plain

Targets

    • Target

      usfive_20211120-122123

    • Size

      529KB

    • MD5

      3958816e874cc7d5f3fefd540a3e06d5

    • SHA1

      0d198aa1041a1030700ceb9ef33c01a2c5b3d441

    • SHA256

      818419b0d9f4176a991d120b8206a3d6b34d288acf1ca5dda763142cc74559ee

    • SHA512

      07ea36cbc16fbfb479f225b18eb7f9cd02b0fb258edbc9b98a3a9d70bfdefac03f93cf97cbec272f225711d8a986a0a274cc38e2b4b253fdbbbcff4fe26e0427

    Score
    10/10
    raccoon8b6023dd139bdc34aab99c286fae23d1442b4956stealer

    • Raccoon

      Simple but powerful infostealer which was very active in 2019.

      stealerraccoon
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks