General
-
Target
3bf5e55fc9479c1d3f5f90952d9a29fe9ca4279374da2295d9643bf98578641f
-
Size
568KB
-
Sample
220215-rgmbvshacj
-
MD5
fcbc2c4444fe9dd9a6301f11f504a68b
-
SHA1
210c74589e3232a1c14659a08ba62d2da4dcd1f7
-
SHA256
3bf5e55fc9479c1d3f5f90952d9a29fe9ca4279374da2295d9643bf98578641f
-
SHA512
71cf64e167ae2b3766fec88e996824ce8cafe015b5e7c86f891ccdcf4f515f9922ad8dce845dcbc7ceafbecc837b9847557a467c29616958fdd039dbcb5ef928
Static task
static1
Behavioral task
behavioral1
Sample
3bf5e55fc9479c1d3f5f90952d9a29fe9ca4279374da2295d9643bf98578641f.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
3bf5e55fc9479c1d3f5f90952d9a29fe9ca4279374da2295d9643bf98578641f.exe
Resource
win10v2004-en-20220113
Malware Config
Extracted
raccoon
1.8.3-hotfix
19425a9ea527ab0b3a94d8156a7d2f62d79d3b73
-
url4cnc
http://91.219.236.162/bimboDinotrex
http://185.163.47.176/bimboDinotrex
http://193.38.54.238/bimboDinotrex
http://74.119.192.122/bimboDinotrex
http://91.219.236.240/bimboDinotrex
https://t.me/bimboDinotrex
Targets
-
-
Target
3bf5e55fc9479c1d3f5f90952d9a29fe9ca4279374da2295d9643bf98578641f
-
Size
568KB
-
MD5
fcbc2c4444fe9dd9a6301f11f504a68b
-
SHA1
210c74589e3232a1c14659a08ba62d2da4dcd1f7
-
SHA256
3bf5e55fc9479c1d3f5f90952d9a29fe9ca4279374da2295d9643bf98578641f
-
SHA512
71cf64e167ae2b3766fec88e996824ce8cafe015b5e7c86f891ccdcf4f515f9922ad8dce845dcbc7ceafbecc837b9847557a467c29616958fdd039dbcb5ef928
Score10/10-
suricata: ET MALWARE Win32.Raccoon Stealer - Telegram Mirror Checkin (generic)
suricata: ET MALWARE Win32.Raccoon Stealer - Telegram Mirror Checkin (generic)
-