Analysis
-
max time kernel
137s -
max time network
137s -
platform
windows7_x64 -
resource
win7-en-20211104 -
submitted
07-12-2021 10:45
Static task
static1
Behavioral task
behavioral1
Sample
12e524ab34859f7ffdc7f92cdbe2e283.exe
Resource
win7-en-20211104
Behavioral task
behavioral2
Sample
12e524ab34859f7ffdc7f92cdbe2e283.exe
Resource
win10-en-20211014
General
-
Target
12e524ab34859f7ffdc7f92cdbe2e283.exe
-
Size
570KB
-
MD5
12e524ab34859f7ffdc7f92cdbe2e283
-
SHA1
3e7b2ac54d1523be93df208c33721a97bec0cb67
-
SHA256
8016cf2a984909cad748683e27ecef70a65c417317b55e8b4031d0aec1f10f06
-
SHA512
d667b9e122cf5cbbeeb095151474a27b581039ed6811f51e5d359387094b78bff3f15cf7f69e1d1d79311eb8efbf12f410fe7df5a9d129e2310e88c02ed85ac7
Malware Config
Extracted
raccoon
1.8.3-hotfix
fd4f23250443a724a3d1548e6ab07c481dfc2814
-
url4cnc
http://91.219.236.27/duglassa1
http://94.158.245.167/duglassa1
http://185.163.204.216/duglassa1
http://185.225.19.238/duglassa1
http://185.163.204.218/duglassa1
https://t.me/duglassa1
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/808-55-0x0000000000268000-0x00000000002B7000-memory.dmpFilesize
316KB
-
memory/808-56-0x0000000075851000-0x0000000075853000-memory.dmpFilesize
8KB
-
memory/808-57-0x0000000000510000-0x000000000059F000-memory.dmpFilesize
572KB
-
memory/808-58-0x0000000000400000-0x0000000000510000-memory.dmpFilesize
1.1MB