Overview

overview

10

Static

static

usfive_202...28.exe

windows7_x64

10

usfive_202...28.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    usfive_20211122-222628

  • Size

    431KB

  • Sample

    211123-k4zr5shfdm

  • MD5

    21502f8a8753820e73b507af7ba0d63f

  • SHA1

    bd93559e642d99655cbda71644ec5f05641201ee

  • SHA256

    10def129bca07607bf9ca18261a8de5dd9ffdd4e958427285dec72d0f7c58fea

  • SHA512

    866186191aa7ccf2922f9d9c561192462a0323c155e54912ccb767327fdb6b4e1b2dec32885db9d7e61a3c9abee7853e9297180683a42a19b8b09ed4ad53944c

Score
10/10
raccoon8b6023dd139bdc34aab99c286fae23d1442b4956stealer

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

8b6023dd139bdc34aab99c286fae23d1442b4956

Attributes
  • url4cnc

    http://91.219.236.27/h_electricryptors2

    http://5.181.156.92/h_electricryptors2

    http://91.219.236.207/h_electricryptors2

    http://185.225.19.18/h_electricryptors2

    http://91.219.237.227/h_electricryptors2

    https://t.me/h_electricryptors2

rc4.plain
rc4.plain

Targets

    • Target

      usfive_20211122-222628

    • Size

      431KB

    • MD5

      21502f8a8753820e73b507af7ba0d63f

    • SHA1

      bd93559e642d99655cbda71644ec5f05641201ee

    • SHA256

      10def129bca07607bf9ca18261a8de5dd9ffdd4e958427285dec72d0f7c58fea

    • SHA512

      866186191aa7ccf2922f9d9c561192462a0323c155e54912ccb767327fdb6b4e1b2dec32885db9d7e61a3c9abee7853e9297180683a42a19b8b09ed4ad53944c

    Score
    10/10
    raccoon8b6023dd139bdc34aab99c286fae23d1442b4956stealer

    • Raccoon

      Simple but powerful infostealer which was very active in 2019.

      stealerraccoon
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks