General
-
Target
e86f1cd73f0be7895872a04dcdfb7766.exe
-
Size
518KB
-
Sample
220313-vs55wsaecm
-
MD5
e86f1cd73f0be7895872a04dcdfb7766
-
SHA1
3b2b9441b33ad62ffd0482fb7809751d3b9bad2a
-
SHA256
e7add15b111b57233b6b738daa79d3be3369d2a8858618c2906b6ef1347dc2c3
-
SHA512
8b80db7f3133be76feda9c0c05d4739018df74d763d15c8d910ebe77917fa6533bbef3c73a085219874a3d0f1c6de6260bb6bd3f0c514bf99dcfd6a2ed13baab
Static task
static1
Behavioral task
behavioral1
Sample
e86f1cd73f0be7895872a04dcdfb7766.exe
Resource
win7-20220310-en
Behavioral task
behavioral2
Sample
e86f1cd73f0be7895872a04dcdfb7766.exe
Resource
win10v2004-en-20220113
Malware Config
Extracted
raccoon
ccba3157b9f42051adf38fbb8f5d0aca7f2b7366
-
url4cnc
http://185.163.204.81/nui8xtgen
http://194.180.191.33/nui8xtgen
http://174.138.11.98/nui8xtgen
http://194.180.191.44/nui8xtgen
http://91.219.236.120/nui8xtgen
https://t.me/nui8xtgen
Targets
-
-
Target
e86f1cd73f0be7895872a04dcdfb7766.exe
-
Size
518KB
-
MD5
e86f1cd73f0be7895872a04dcdfb7766
-
SHA1
3b2b9441b33ad62ffd0482fb7809751d3b9bad2a
-
SHA256
e7add15b111b57233b6b738daa79d3be3369d2a8858618c2906b6ef1347dc2c3
-
SHA512
8b80db7f3133be76feda9c0c05d4739018df74d763d15c8d910ebe77917fa6533bbef3c73a085219874a3d0f1c6de6260bb6bd3f0c514bf99dcfd6a2ed13baab
-
suricata: ET MALWARE Win32.Raccoon Stealer - Telegram Mirror Checkin (generic)
suricata: ET MALWARE Win32.Raccoon Stealer - Telegram Mirror Checkin (generic)
-
suricata: ET MALWARE Win32.Raccoon Stealer Checkin M6
suricata: ET MALWARE Win32.Raccoon Stealer Checkin M6
-