Overview

overview

10

Static

static

dridex

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e0dc9892401f354cc3ca63c1e6e66b2fd93a804b3ea09bd348d8f55859847022

  • Size

    553KB

  • Sample

    211204-185rysede8

  • MD5

    807675ef43da7eabb62795d7c02f7078

  • SHA1

    e644406057ee1688e309be8cb0a143e5c6e9f5f9

  • SHA256

    e0dc9892401f354cc3ca63c1e6e66b2fd93a804b3ea09bd348d8f55859847022

  • SHA512

    e2de12aa9733a05bbcf6f7af66dadcfd99923abc7aebd27586f05f9754cf0dbf334e08c3255744e7b01f35a393c4a6a6f8a54e3d6fe85bdc46db47cea56f8b7a

Score
10/10
raccoona1fcef6b211f7efaa652483b438c193569359f50stealer

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

a1fcef6b211f7efaa652483b438c193569359f50

Attributes
  • url4cnc

    http://94.158.245.137/duglassa1

    http://91.219.236.27/duglassa1

    http://94.158.245.167/duglassa1

    http://185.163.204.216/duglassa1

    http://185.225.19.238/duglassa1

    http://185.163.204.218/duglassa1

    https://t.me/duglassa1

rc4.plain
rc4.plain

Targets

    • Target

      e0dc9892401f354cc3ca63c1e6e66b2fd93a804b3ea09bd348d8f55859847022

    • Size

      553KB

    • MD5

      807675ef43da7eabb62795d7c02f7078

    • SHA1

      e644406057ee1688e309be8cb0a143e5c6e9f5f9

    • SHA256

      e0dc9892401f354cc3ca63c1e6e66b2fd93a804b3ea09bd348d8f55859847022

    • SHA512

      e2de12aa9733a05bbcf6f7af66dadcfd99923abc7aebd27586f05f9754cf0dbf334e08c3255744e7b01f35a393c4a6a6f8a54e3d6fe85bdc46db47cea56f8b7a

    Score
    10/10
    raccoona1fcef6b211f7efaa652483b438c193569359f50stealer

    • Raccoon

      Simple but powerful infostealer which was very active in 2019.

      stealerraccoon
    behavioral1

MITRE ATT&CK Matrix

Tasks