560-198-0x0000000000400000-0x00000000004B2000-memory.dmp

General
Target

560-198-0x0000000000400000-0x00000000004B2000-memory.dmp

Size

712KB

Sample

220516-mya8psggd5

Score
10 /10
MD5

3dd983cb58cc85f1f88c839e9e8c4a0d

SHA1

d7b47d59817e919edcc581ba2d3cfc7895bfecaa

SHA256

d3906bf8c67a4a797e2974ce24f1f8e5dbbf3cacd2cc75efa9104ca4281e5565

SHA512

b717d03f32e862a1c11d40b4be88111b1c0521826bb93a7ecf7ef502fd0407a25c7b2149587405678ae1a6e2e59da1d66748907aedf478169e500162b45f5247

Malware Config

Extracted

Family raccoon
Botnet ccba3157b9f42051adf38fbb8f5d0aca7f2b7366
Attributes
url4cnc
http://185.163.204.81/nui8xtgen
http://194.180.191.33/nui8xtgen
http://174.138.11.98/nui8xtgen
http://194.180.191.44/nui8xtgen
http://91.219.236.120/nui8xtgen
https://t.me/nui8xtgen
rc4.plain
rc4.plain
Targets
Target

560-198-0x0000000000400000-0x00000000004B2000-memory.dmp

MD5

3dd983cb58cc85f1f88c839e9e8c4a0d

Filesize

712KB

Score
3/10
SHA1

d7b47d59817e919edcc581ba2d3cfc7895bfecaa

SHA256

d3906bf8c67a4a797e2974ce24f1f8e5dbbf3cacd2cc75efa9104ca4281e5565

SHA512

b717d03f32e862a1c11d40b4be88111b1c0521826bb93a7ecf7ef502fd0407a25c7b2149587405678ae1a6e2e59da1d66748907aedf478169e500162b45f5247

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          behavioral1

                          1/10

                          behavioral2

                          3/10