raccoon | d06e335a2ae5ec650f1272bdb4c780ee859c6ebe54b2d0948b6f9cd8db6b316e | Triage

Sharing

General

Target

d06e335a2ae5ec650f1272bdb4c780ee859c6ebe54b2d0948b6f9cd8db6b316e
Size

1.1MB
Sample

211123-wnhpgaeah7
MD5

aa1954a90a54f0a55cd7dae5a283ff1e
SHA1

98173f9eaf1a8b3a12116f27a957f05aa2c8481b
SHA256

d06e335a2ae5ec650f1272bdb4c780ee859c6ebe54b2d0948b6f9cd8db6b316e
SHA512

ffc5e30753a96cc63d335aed3ec4700fe534e37cdc097401313689ec9126da68c5cbd9139354d817f44b59d1350fe296201187741325b45d0038c9e0cd1045f3

Score

10^/10

raccoon fe1f102f3334068962b64125bcb00816dba46087 stealer

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

fe1f102f3334068962b64125bcb00816dba46087

Attributes

url4cnc
http://91.219.236.27/ocherednyara1
http://5.181.156.92/ocherednyara1
http://91.219.236.207/ocherednyara1
http://185.225.19.18/ocherednyara1
http://91.219.237.227/ocherednyara1
https://t.me/ocherednyara1

rc4.plain

rc4.plain

Targets

- Target
  
  d06e335a2ae5ec650f1272bdb4c780ee859c6ebe54b2d0948b6f9cd8db6b316e
- Size
  
  1.1MB
- MD5
  
  aa1954a90a54f0a55cd7dae5a283ff1e
- SHA1
  
  98173f9eaf1a8b3a12116f27a957f05aa2c8481b
- SHA256
  
  d06e335a2ae5ec650f1272bdb4c780ee859c6ebe54b2d0948b6f9cd8db6b316e
- SHA512
  
  ffc5e30753a96cc63d335aed3ec4700fe534e37cdc097401313689ec9126da68c5cbd9139354d817f44b59d1350fe296201187741325b45d0038c9e0cd1045f3
Score

10^/10

raccoon fe1f102f3334068962b64125bcb00816dba46087 stealer
- Raccoon
  Simple but powerful infostealer which was very active in 2019.
  stealer raccoon
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

raccoonfe1f102f3334068962b64125bcb00816dba46087stealer