raccoon | ff7f9819fae56695cb050049e7d19bedc070975f499d52735218085c7f3291d1 | Triage

Sharing

General

Target

hbtwo_20220307-120131
Size

549KB
Sample

220307-m8lr7adfg7
MD5

830419614e1b340f8f79f95f51550e7d
SHA1

06fda0e29b77b2976d6fed7786b02f029f9a7199
SHA256

ff7f9819fae56695cb050049e7d19bedc070975f499d52735218085c7f3291d1
SHA512

d8fdaaa03ccd85fa204b4a6fb1c71bf239e214833b07d6cc0bacd5a84b553e7664a11e68fd70fa8a24a5e7bba244a3032e955a71e3fd04c9f9b74b9c87cd7e25

Score

10^/10

raccoon 1c0fad6805a0f65d7b597130eb9f089ffbe9857d stealer

Malware Config

Extracted

Family

raccoon

Botnet

1c0fad6805a0f65d7b597130eb9f089ffbe9857d

Attributes

url4cnc
http://194.180.191.241/capibar
http://103.155.93.35/capibar
https://t.me/capibar

rc4.plain

rc4.plain

Targets

- Target
  
  hbtwo_20220307-120131
- Size
  
  549KB
- MD5
  
  830419614e1b340f8f79f95f51550e7d
- SHA1
  
  06fda0e29b77b2976d6fed7786b02f029f9a7199
- SHA256
  
  ff7f9819fae56695cb050049e7d19bedc070975f499d52735218085c7f3291d1
- SHA512
  
  d8fdaaa03ccd85fa204b4a6fb1c71bf239e214833b07d6cc0bacd5a84b553e7664a11e68fd70fa8a24a5e7bba244a3032e955a71e3fd04c9f9b74b9c87cd7e25
Score

10^/10

raccoon 1c0fad6805a0f65d7b597130eb9f089ffbe9857d stealer
- Raccoon
  Simple but powerful infostealer which was very active in 2019.
  stealer raccoon
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

raccoon1c0fad6805a0f65d7b597130eb9f089ffbe9857dstealer

behavioral2

raccoon1c0fad6805a0f65d7b597130eb9f089ffbe9857dstealer