General

  • Target

    ff5735fd5a8212a70382700fbc8644a2ac8b47f3e2b8f3ef09a01c06b9963e8a

  • Size

    544KB

  • Sample

    211204-p3cnfabaem

  • MD5

    9b9b348cfef6506a15146163daf7ce69

  • SHA1

    cf5c6f049c7dce88b8ac075f5ffe293d5cf7f3ee

  • SHA256

    ff5735fd5a8212a70382700fbc8644a2ac8b47f3e2b8f3ef09a01c06b9963e8a

  • SHA512

    f779db4c20eb3c1822f5746c23ad3e81e270db36f9a8b229f7d4a6ba9a8b40de157836811c4b5c8e72e0304e135cf93698ead5b05f18468e008ccc222f70ed51

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

049dc5184bb65eb56e4e860bf61427e2a0fcba1e

Attributes
  • url4cnc

    http://185.225.19.18/duglassa1

    http://91.219.237.227/duglassa1

    https://t.me/duglassa1

rc4.plain
rc4.plain

Targets

    • Target

      ff5735fd5a8212a70382700fbc8644a2ac8b47f3e2b8f3ef09a01c06b9963e8a

    • Size

      544KB

    • MD5

      9b9b348cfef6506a15146163daf7ce69

    • SHA1

      cf5c6f049c7dce88b8ac075f5ffe293d5cf7f3ee

    • SHA256

      ff5735fd5a8212a70382700fbc8644a2ac8b47f3e2b8f3ef09a01c06b9963e8a

    • SHA512

      f779db4c20eb3c1822f5746c23ad3e81e270db36f9a8b229f7d4a6ba9a8b40de157836811c4b5c8e72e0304e135cf93698ead5b05f18468e008ccc222f70ed51

    • Raccoon

      Simple but powerful infostealer which was very active in 2019.

MITRE ATT&CK Matrix

Tasks