Overview

overview

10

Static

static

dridex

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1f7b4f7177a601ba168f0aea91ea7f3e517cde434fbd30e6417a757e85d16663

  • Size

    724KB

  • Sample

    220309-xnsecaeccj

  • MD5

    ee252c585d12552ccae1c900e5e97026

  • SHA1

    9e9c72184715f5f8ab4808b08fb9c3ab1d725827

  • SHA256

    1f7b4f7177a601ba168f0aea91ea7f3e517cde434fbd30e6417a757e85d16663

  • SHA512

    7403f211b952a2ac4d127c4d85fca5fb4024f713fd355cb91827aee296c33be736e6e355f9fb0ccc1d9265c33faa857015248a7f930a6514933721c86518c96c

Score
10/10
raccoon1c0fad6805a0f65d7b597130eb9f089ffbe9857dstealersuricata

Malware Config

Extracted

Family

raccoon

Botnet

1c0fad6805a0f65d7b597130eb9f089ffbe9857d

Attributes
  • url4cnc

    http://194.180.191.241/capibar

    http://103.155.93.35/capibar

    https://t.me/capibar

rc4.plain
rc4.plain

Targets

    • Target

      1f7b4f7177a601ba168f0aea91ea7f3e517cde434fbd30e6417a757e85d16663

    • Size

      724KB

    • MD5

      ee252c585d12552ccae1c900e5e97026

    • SHA1

      9e9c72184715f5f8ab4808b08fb9c3ab1d725827

    • SHA256

      1f7b4f7177a601ba168f0aea91ea7f3e517cde434fbd30e6417a757e85d16663

    • SHA512

      7403f211b952a2ac4d127c4d85fca5fb4024f713fd355cb91827aee296c33be736e6e355f9fb0ccc1d9265c33faa857015248a7f930a6514933721c86518c96c

    Score
    10/10
    raccoon1c0fad6805a0f65d7b597130eb9f089ffbe9857dstealersuricata

    • Raccoon

      Simple but powerful infostealer which was very active in 2019.

      stealerraccoon

    • suricata: ET MALWARE Win32.Raccoon Stealer - Telegram Mirror Checkin (generic)

      suricata: ET MALWARE Win32.Raccoon Stealer - Telegram Mirror Checkin (generic)

      suricata

    • suricata: ET MALWARE Win32.Raccoon Stealer Checkin M6

      suricata: ET MALWARE Win32.Raccoon Stealer Checkin M6

      suricata
    behavioral1

MITRE ATT&CK Matrix

Tasks