Overview

overview

10

Static

static

e706999f8e...e5.exe

windows7_x64

10

e706999f8e...e5.exe

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e706999f8ee1816e90456012deec979de66a1b95d37e8fc9f24cd52a9fe984e5

  • Size

    458KB

  • Sample

    220308-a5s1wahhh8

  • MD5

    8cd3bb62e945131fe563fe1b2b6d205f

  • SHA1

    affdbb33d5e4bfd9feaedd947e44a838f948e318

  • SHA256

    e706999f8ee1816e90456012deec979de66a1b95d37e8fc9f24cd52a9fe984e5

  • SHA512

    9a1a16206fc050cf66a85d9008961dfdde8c9b3243c19a6980db794868793e0010bd1617d37aa5fee1003dd8f0b1a0d111195efd7f998842edf87458614186f6

Score
10/10
raccoon68e2d75238f7c69859792d206401b6bde2b2515cstealer

Malware Config

Extracted

Family

raccoon

Botnet

68e2d75238f7c69859792d206401b6bde2b2515c

Attributes
  • url4cnc

    http://telegalive.top/agrybirdsgamerept

    http://toptelete.top/agrybirdsgamerept

    http://telegraf.top/agrybirdsgamerept

    https://t.me/agrybirdsgamerept

rc4.plain
rc4.plain

Targets

    • Target

      e706999f8ee1816e90456012deec979de66a1b95d37e8fc9f24cd52a9fe984e5

    • Size

      458KB

    • MD5

      8cd3bb62e945131fe563fe1b2b6d205f

    • SHA1

      affdbb33d5e4bfd9feaedd947e44a838f948e318

    • SHA256

      e706999f8ee1816e90456012deec979de66a1b95d37e8fc9f24cd52a9fe984e5

    • SHA512

      9a1a16206fc050cf66a85d9008961dfdde8c9b3243c19a6980db794868793e0010bd1617d37aa5fee1003dd8f0b1a0d111195efd7f998842edf87458614186f6

    Score
    10/10
    raccoon68e2d75238f7c69859792d206401b6bde2b2515cstealer

    • Raccoon

      Simple but powerful infostealer which was very active in 2019.

      stealerraccoon
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks