Overview

overview

10

Static

static

tmp/2fae04...86.exe

windows7_x64

10

tmp/2fae04...86.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    tmp/2fae04ff0653c91bd7dd442ecf958fe8a2fbcc92f48762fa6253abc3f871e686.exe

  • Size

    558KB

  • Sample

    211207-sp5c3sagaj

  • MD5

    b45015ffe71f24e44b0ec9c876c58be5

  • SHA1

    9132c7fbd61cd9274122c9c0927211331f0156a4

  • SHA256

    2fae04ff0653c91bd7dd442ecf958fe8a2fbcc92f48762fa6253abc3f871e686

  • SHA512

    940583672f1f0ee783a527f12172918605ea7d5485b0bd664aa372db125fa96b7a7c895d72dd5665de59c653ed03d3be24ffa89f61d76b669e9919d27cba73a4

Score
10/10
raccoon368edc46e5556fb4527095fbd5e5db4feddc8cf2stealer

Malware Config

Extracted

Family

raccoon

Version

1.8.3-hotfix

Botnet

368edc46e5556fb4527095fbd5e5db4feddc8cf2

Attributes
  • url4cnc

    http://94.158.245.137/availablewerse

    http://91.219.236.27/availablewerse

    http://94.158.245.167/availablewerse

    http://185.163.204.216/availablewerse

    http://185.225.19.238/availablewerse

    http://185.163.204.218/availablewerse

    https://t.me/availablewerse

rc4.plain
rc4.plain

Targets

    • Target

      tmp/2fae04ff0653c91bd7dd442ecf958fe8a2fbcc92f48762fa6253abc3f871e686.exe

    • Size

      558KB

    • MD5

      b45015ffe71f24e44b0ec9c876c58be5

    • SHA1

      9132c7fbd61cd9274122c9c0927211331f0156a4

    • SHA256

      2fae04ff0653c91bd7dd442ecf958fe8a2fbcc92f48762fa6253abc3f871e686

    • SHA512

      940583672f1f0ee783a527f12172918605ea7d5485b0bd664aa372db125fa96b7a7c895d72dd5665de59c653ed03d3be24ffa89f61d76b669e9919d27cba73a4

    Score
    10/10
    raccoon368edc46e5556fb4527095fbd5e5db4feddc8cf2stealer

    • Raccoon

      Simple but powerful infostealer which was very active in 2019.

      stealerraccoon
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks