General

  • Size

    80KB

  • Sample

    220923-g554rsddb2

  • MD5

    bc7ca36d8d092d54a459c04f4df2bf1d

  • SHA1

    4844d784195e89004393a0cdd378212f5f22aa7d

  • SHA256

    053270af2af8a2c6e24f3c3899c3c8f08782c6b5f36cbc6e34d9d3acc6e48fae

  • SHA512

    2414ca2da22e8d1fe2491aa71cf34b4c9832f8405f9a58b101c75b23d633ed8ffbb34c9330369221b15ab1dc8120635dc59ce3dffda790da443562c53933b21e

Malware Config

Extracted

Family

raccoon

Botnet

7394a7fc5da9794209d8b0503ca4abf4

C2

http://45.8.145.203

rc4.plain

Targets

    • Target

      4516-237-0x0000000000400000-0x0000000000414000-memory.dmp

    • Size

      80KB

    • MD5

      bc7ca36d8d092d54a459c04f4df2bf1d

    • SHA1

      4844d784195e89004393a0cdd378212f5f22aa7d

    • SHA256

      053270af2af8a2c6e24f3c3899c3c8f08782c6b5f36cbc6e34d9d3acc6e48fae

    • SHA512

      2414ca2da22e8d1fe2491aa71cf34b4c9832f8405f9a58b101c75b23d633ed8ffbb34c9330369221b15ab1dc8120635dc59ce3dffda790da443562c53933b21e

    Score
    3/10

MITRE ATT&CK Matrix

Collection

    Command and Control

      Credential Access

        Defense Evasion

          Discovery

            Execution

              Exfiltration

                Impact

                  Initial Access

                    Lateral Movement

                      Persistence

                        Privilege Escalation