General
-
Target
8b7f855915dcbf3d24b6509c7aa6268e
-
Size
551KB
-
Sample
220311-xqx3lsdhbm
-
MD5
8b7f855915dcbf3d24b6509c7aa6268e
-
SHA1
bc0013c23f4ee0fa803defc9b66f2e91e8e20444
-
SHA256
7fcc48b2b40ebd39192948c22ee86521efa5214b39902ba7700908031d294afd
-
SHA512
293de74fd4911cd10dc146538321bdfcb685a497fe816c4062eb0f502d05cc3642a4c97ba5bb81210bb44b419f3cb497953e2a403a5f8c9777e684b949ee1739
Static task
static1
Behavioral task
behavioral1
Sample
8b7f855915dcbf3d24b6509c7aa6268e.exe
Resource
win7-20220311-en
Behavioral task
behavioral2
Sample
8b7f855915dcbf3d24b6509c7aa6268e.exe
Resource
win10v2004-20220310-en
Malware Config
Extracted
raccoon
1c0fad6805a0f65d7b597130eb9f089ffbe9857d
-
url4cnc
http://194.180.191.241/capibar
http://103.155.93.35/capibar
https://t.me/capibar
Targets
-
-
Target
8b7f855915dcbf3d24b6509c7aa6268e
-
Size
551KB
-
MD5
8b7f855915dcbf3d24b6509c7aa6268e
-
SHA1
bc0013c23f4ee0fa803defc9b66f2e91e8e20444
-
SHA256
7fcc48b2b40ebd39192948c22ee86521efa5214b39902ba7700908031d294afd
-
SHA512
293de74fd4911cd10dc146538321bdfcb685a497fe816c4062eb0f502d05cc3642a4c97ba5bb81210bb44b419f3cb497953e2a403a5f8c9777e684b949ee1739
-
suricata: ET MALWARE Win32.Raccoon Stealer - Telegram Mirror Checkin (generic)
suricata: ET MALWARE Win32.Raccoon Stealer - Telegram Mirror Checkin (generic)
-
suricata: ET MALWARE Win32.Raccoon Stealer Checkin M6
suricata: ET MALWARE Win32.Raccoon Stealer Checkin M6
-