Overview

overview

10

Static

static

usfive_202...59.exe

windows7_x64

10

usfive_202...59.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    usfive_20211122-160059

  • Size

    439KB

  • Sample

    211123-k4vhescge5

  • MD5

    5da230c472e1ee31422ca7cbfa137573

  • SHA1

    00a5aed7b8688c98413d9648e85a41e6ed452843

  • SHA256

    c0cfc6e7e18ab1155892f17a6de5170bbfc37ef508323266eb6cd81e7067ad1d

  • SHA512

    2594c71abe06e3e61ffc876346abef3e4887f00354185298f3715a22714503eaafa140af0a91cca7e6f76dff1d6b92512618dcc77fc13845c299a14be10f50d7

Score
10/10
raccoon8b6023dd139bdc34aab99c286fae23d1442b4956stealer

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

8b6023dd139bdc34aab99c286fae23d1442b4956

Attributes
  • url4cnc

    http://91.219.236.27/h_electricryptors2

    http://5.181.156.92/h_electricryptors2

    http://91.219.236.207/h_electricryptors2

    http://185.225.19.18/h_electricryptors2

    http://91.219.237.227/h_electricryptors2

    https://t.me/h_electricryptors2

rc4.plain
rc4.plain

Targets

    • Target

      usfive_20211122-160059

    • Size

      439KB

    • MD5

      5da230c472e1ee31422ca7cbfa137573

    • SHA1

      00a5aed7b8688c98413d9648e85a41e6ed452843

    • SHA256

      c0cfc6e7e18ab1155892f17a6de5170bbfc37ef508323266eb6cd81e7067ad1d

    • SHA512

      2594c71abe06e3e61ffc876346abef3e4887f00354185298f3715a22714503eaafa140af0a91cca7e6f76dff1d6b92512618dcc77fc13845c299a14be10f50d7

    Score
    10/10
    raccoon8b6023dd139bdc34aab99c286fae23d1442b4956stealer

    • Raccoon

      Simple but powerful infostealer which was very active in 2019.

      stealerraccoon
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks