General
-
Target
http://asvajvdyjsxxg.top/strong/mix.exe
-
Sample
220809-plfnrsabhj
Score
10/10
Static task
static1
URLScan task
urlscan1
Behavioral task
behavioral1
Sample
http://asvajvdyjsxxg.top/strong/mix.exe
Resource
win7-20220718-en
windows7-x64
13 signatures
150 seconds
Behavioral task
behavioral2
Sample
http://asvajvdyjsxxg.top/strong/mix.exe
Resource
win10v2004-20220721-en
windows10-2004-x64
12 signatures
150 seconds
Malware Config
Extracted
Family
raccoon
Botnet
839b5f035af17fe32dbee0ca113be5fc
C2
http://89.185.85.53/
rc4.plain
Targets
-
-
Target
http://asvajvdyjsxxg.top/strong/mix.exe
Score10/10-
Raccoon Stealer payload
-
Downloads MZ/PE file
-
Executes dropped EXE
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-