raccoon | hxxps://cdn[.]discordapp[.]com/attachments/939583004387471483/952319283906617374/GIFT_VOUCHER[.]zip | Triage

Submit
Reports

Overview

overview

Static

static

URLScan

urlscan

1

https://cdn.discorda...

windows7_x64

https://cdn.discorda...

windows10-2004_x64

1

Sharing

General

Target

https://cdn.discordapp.com/attachments/939583004387471483/952319283906617374/GIFT_VOUCHER.zip
Sample

220511-anz3vseafq

Score

10^/10

raccoon 7994c54742ba2370446cc758f5e797d4fefc8347 stealer

Static task

static1

URLScan task

urlscan1

Behavioral task

behavioral1

Sample

https://cdn.discordapp.com/attachments/939583004387471483/952319283906617374/GIFT_VOUCHER.zip

Resource

win7-20220414-en

raccoon 7994c54742ba2370446cc758f5e797d4fefc8347 stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

https://cdn.discordapp.com/attachments/939583004387471483/952319283906617374/GIFT_VOUCHER.zip

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

raccoon

Botnet

7994c54742ba2370446cc758f5e797d4fefc8347

Attributes

url4cnc
http://85.159.212.113/darnerd00m
http://185.163.204.81/darnerd00m
http://194.180.191.33/darnerd00m
http://174.138.11.98/darnerd00m
http://194.180.191.44/darnerd00m
http://91.219.236.120/darnerd00m
https://t.me/darnerd00m

rc4.plain

rc4.plain

Targets

- Target
  
  https://cdn.discordapp.com/attachments/939583004387471483/952319283906617374/GIFT_VOUCHER.zip
Score

10^/10

raccoon 7994c54742ba2370446cc758f5e797d4fefc8347 stealer
- Raccoon
  Simple but powerful infostealer which was very active in 2019.
  stealer raccoon
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

urlscan1

behavioral1

raccoon7994c54742ba2370446cc758f5e797d4fefc8347stealer

behavioral2

© 2018-2024

Terms | Privacy