raccoon | 77e40ca1c6001b2c01ef50b84585d68127eeb5691c899b049a9948fb60b13455 | Triage

Sharing

General

Target

77e40ca1c6001b2c01ef50b84585d68127eeb5691c899b049a9948fb60b13455
Size

547KB
Sample

211206-1enlksfbfp
MD5

bce50d5b17bb88f22f0000511026520d
SHA1

599aaed4ee72ec0e0fc4cada844a1c210e332961
SHA256

77e40ca1c6001b2c01ef50b84585d68127eeb5691c899b049a9948fb60b13455
SHA512

c7dea899ed181efd0474a8b181b8fd8e91c734703a03ac71381e072684c93dd6d002629ffcfeefb15b6ca79ba1cf8cc62acd2b16fe7e0faed444c6f3eebb7536

Score

10^/10

raccoon f797145799b7b1b77b35d81de942eee0908da519 stealer

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

f797145799b7b1b77b35d81de942eee0908da519

Attributes

url4cnc
http://91.219.236.27/capibar
http://94.158.245.167/capibar
http://185.163.204.216/capibar
http://185.225.19.238/capibar
http://185.163.204.218/capibar
https://t.me/capibar

rc4.plain

rc4.plain

Targets

- Target
  
  77e40ca1c6001b2c01ef50b84585d68127eeb5691c899b049a9948fb60b13455
- Size
  
  547KB
- MD5
  
  bce50d5b17bb88f22f0000511026520d
- SHA1
  
  599aaed4ee72ec0e0fc4cada844a1c210e332961
- SHA256
  
  77e40ca1c6001b2c01ef50b84585d68127eeb5691c899b049a9948fb60b13455
- SHA512
  
  c7dea899ed181efd0474a8b181b8fd8e91c734703a03ac71381e072684c93dd6d002629ffcfeefb15b6ca79ba1cf8cc62acd2b16fe7e0faed444c6f3eebb7536
Score

10^/10

raccoon f797145799b7b1b77b35d81de942eee0908da519 stealer
- Raccoon
  Simple but powerful infostealer which was very active in 2019.
  stealer raccoon
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

raccoonf797145799b7b1b77b35d81de942eee0908da519stealer