raccoon | f3ad0db05f4bfea56bca6ee8e6bd522380c2a8bb6d6ab48e64545fb0bf0be4c0 | Triage

Sharing

General

Target

f3ad0db05f4bfea56bca6ee8e6bd522380c2a8bb6d6ab48e64545fb0bf0be4c0
Size

427KB
Sample

211124-w5rnpsddfj
MD5

514407f202d1579f20d2388bede9b1f3
SHA1

92507fc5f6909abe42b7de1222bbd43ea653db05
SHA256

f3ad0db05f4bfea56bca6ee8e6bd522380c2a8bb6d6ab48e64545fb0bf0be4c0
SHA512

23fed0e07fba414e63f1136362dfa6a6f2ea1eef81332b46723e9a08392fc573c94139f6c3d999841632767c2697fd29073956a25c6b25f48fa2d30d08bf1f65

Score

10^/10

raccoon 14b265e74e2847e8408db7ca21fe6fe2e9ab5767 stealer

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

14b265e74e2847e8408db7ca21fe6fe2e9ab5767

Attributes

url4cnc
http://91.219.236.162/masterdanteloma
http://185.163.47.176/masterdanteloma
http://193.38.54.238/masterdanteloma
http://74.119.192.122/masterdanteloma
http://91.219.236.240/masterdanteloma
https://t.me/masterdanteloma

rc4.plain

rc4.plain

Targets

- Target
  
  f3ad0db05f4bfea56bca6ee8e6bd522380c2a8bb6d6ab48e64545fb0bf0be4c0
- Size
  
  427KB
- MD5
  
  514407f202d1579f20d2388bede9b1f3
- SHA1
  
  92507fc5f6909abe42b7de1222bbd43ea653db05
- SHA256
  
  f3ad0db05f4bfea56bca6ee8e6bd522380c2a8bb6d6ab48e64545fb0bf0be4c0
- SHA512
  
  23fed0e07fba414e63f1136362dfa6a6f2ea1eef81332b46723e9a08392fc573c94139f6c3d999841632767c2697fd29073956a25c6b25f48fa2d30d08bf1f65
Score

10^/10

raccoon 14b265e74e2847e8408db7ca21fe6fe2e9ab5767 stealer
- Raccoon
  Simple but powerful infostealer which was very active in 2019.
  stealer raccoon
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

raccoon14b265e74e2847e8408db7ca21fe6fe2e9ab5767stealer