General

  • Target

    8016cf2a984909cad748683e27ecef70a65c417317b55e8b4031d0aec1f10f06

  • Size

    570KB

  • Sample

    211207-g515tagbbp

  • MD5

    12e524ab34859f7ffdc7f92cdbe2e283

  • SHA1

    3e7b2ac54d1523be93df208c33721a97bec0cb67

  • SHA256

    8016cf2a984909cad748683e27ecef70a65c417317b55e8b4031d0aec1f10f06

  • SHA512

    d667b9e122cf5cbbeeb095151474a27b581039ed6811f51e5d359387094b78bff3f15cf7f69e1d1d79311eb8efbf12f410fe7df5a9d129e2310e88c02ed85ac7

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

fd4f23250443a724a3d1548e6ab07c481dfc2814

Attributes
  • url4cnc

    http://91.219.236.27/duglassa1

    http://94.158.245.167/duglassa1

    http://185.163.204.216/duglassa1

    http://185.225.19.238/duglassa1

    http://185.163.204.218/duglassa1

    https://t.me/duglassa1

rc4.plain
rc4.plain

Targets

    • Target

      8016cf2a984909cad748683e27ecef70a65c417317b55e8b4031d0aec1f10f06

    • Size

      570KB

    • MD5

      12e524ab34859f7ffdc7f92cdbe2e283

    • SHA1

      3e7b2ac54d1523be93df208c33721a97bec0cb67

    • SHA256

      8016cf2a984909cad748683e27ecef70a65c417317b55e8b4031d0aec1f10f06

    • SHA512

      d667b9e122cf5cbbeeb095151474a27b581039ed6811f51e5d359387094b78bff3f15cf7f69e1d1d79311eb8efbf12f410fe7df5a9d129e2310e88c02ed85ac7

    • Raccoon

      Simple but powerful infostealer which was very active in 2019.

MITRE ATT&CK Matrix

Tasks