Overview

overview

10

Static

static

mixfive_20...00.exe

windows7_x64

10

mixfive_20...00.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    mixfive_20220108-135000

  • Size

    690KB

  • Sample

    220108-rpnvnaddhn

  • MD5

    6cf7bee2b585caa258c0d19040baed0c

  • SHA1

    1da155cc868e60f8a522785068bab6e9963a24bf

  • SHA256

    12ff67cb14068738bc7a5a153125c39879dca2ebac56ba4dac98232d5ea60132

  • SHA512

    bc5c77e1b42e27a378d9091640b07cd6607f0450a38099c2a18a8bf47f2efd0d22d5c4d1073620086ca994d77b4053f6c21dc9c1ceb17d9b5491b64a1ff03750

Score
10/10
raccoon10da56e7e71e97bdc1f36eb76813bbc3231de7e4stealer

Malware Config

Extracted

Family

raccoon

Botnet

10da56e7e71e97bdc1f36eb76813bbc3231de7e4

Attributes
  • url4cnc

    http://194.180.174.53/capibar

    http://91.219.236.18/capibar

    http://194.180.174.41/capibar

    http://91.219.236.148/capibar

    https://t.me/capibar

rc4.plain
rc4.plain

Targets

    • Target

      mixfive_20220108-135000

    • Size

      690KB

    • MD5

      6cf7bee2b585caa258c0d19040baed0c

    • SHA1

      1da155cc868e60f8a522785068bab6e9963a24bf

    • SHA256

      12ff67cb14068738bc7a5a153125c39879dca2ebac56ba4dac98232d5ea60132

    • SHA512

      bc5c77e1b42e27a378d9091640b07cd6607f0450a38099c2a18a8bf47f2efd0d22d5c4d1073620086ca994d77b4053f6c21dc9c1ceb17d9b5491b64a1ff03750

    Score
    10/10
    raccoon10da56e7e71e97bdc1f36eb76813bbc3231de7e4stealer

    • Raccoon

      Simple but powerful infostealer which was very active in 2019.

      stealerraccoon

    • Suspicious use of NtCreateProcessExOtherParentProcess

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks