raccoon | ed7edd291d4c2cc21f2c75af41f1d32b2e6ae6973236d1715d83f01c76811021 | Triage

Sharing

General

Target

2e19613dc4b7b13c47312bfdf4ec399c
Size

528KB
Sample

211204-kc1v5aafhn
MD5

2e19613dc4b7b13c47312bfdf4ec399c
SHA1

6809a37a40a224029f07c62c6308121e5d84290d
SHA256

ed7edd291d4c2cc21f2c75af41f1d32b2e6ae6973236d1715d83f01c76811021
SHA512

b939889905b7c28b217946b2185da12098ac45d0d6fe602253644d2d30f9d6c8db753c84df5cd6548c2a3b390b1c69915735240864ea0e722bfeaec05aeb620a

Score

10^/10

raccoon 049dc5184bb65eb56e4e860bf61427e2a0fcba1e stealer

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

049dc5184bb65eb56e4e860bf61427e2a0fcba1e

Attributes

url4cnc
http://185.225.19.18/duglassa1
http://91.219.237.227/duglassa1
https://t.me/duglassa1

rc4.plain

rc4.plain

Targets

- Target
  
  2e19613dc4b7b13c47312bfdf4ec399c
- Size
  
  528KB
- MD5
  
  2e19613dc4b7b13c47312bfdf4ec399c
- SHA1
  
  6809a37a40a224029f07c62c6308121e5d84290d
- SHA256
  
  ed7edd291d4c2cc21f2c75af41f1d32b2e6ae6973236d1715d83f01c76811021
- SHA512
  
  b939889905b7c28b217946b2185da12098ac45d0d6fe602253644d2d30f9d6c8db753c84df5cd6548c2a3b390b1c69915735240864ea0e722bfeaec05aeb620a
Score

10^/10

raccoon 049dc5184bb65eb56e4e860bf61427e2a0fcba1e stealer
- Raccoon
  Simple but powerful infostealer which was very active in 2019.
  stealer raccoon
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

raccoon049dc5184bb65eb56e4e860bf61427e2a0fcba1estealer

behavioral2

raccoon049dc5184bb65eb56e4e860bf61427e2a0fcba1estealer