Overview

overview

10

Static

static

4

Setup.exe

windows7-x64

10

Setup.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    AppSetup(1).zip

  • Size

    113.2MB

  • Sample

    221005-1e4ykafga5

  • MD5

    e942698e0523f048c35425c37080f9ed

  • SHA1

    685a53f3bb83eba6ca13bf804dc211c3a1bdc565

  • SHA256

    e2bae85cda82589d5dda7835c71aef169dda99a4fd27048350906d48db43c348

  • SHA512

    bd409a70625a900374707fc0c7cd635e09e329ef0fbbb55f95740181b40d958e00673075b61d521e84d1cadf9f858a03e57759c9579a7f1d5c6744a3e669596b

  • SSDEEP

    3145728:4BWkfAz2CJyHBWkfPBWkf5z/zpCCCfyOy1BWkfzzlCmyWbdB:tk0hk0kxrwkXHdB

Score
10/10
raccoon7ec0af105a2631ea432df2de38161395linkpdfstealer

Malware Config

Extracted

Family

raccoon

Botnet

7ec0af105a2631ea432df2de38161395

C2

http://87.251.77.253/

rc4.plain

Targets

    • Target

      Setup.exe

    • Size

      664.4MB

    • MD5

      29da40e7b37960b4fe9727c992554bbe

    • SHA1

      457900e4cb6bd4ec244bb841e05ebd27605e29c3

    • SHA256

      e57ec8afa43f75f145cd4d6564af92c92925b8b561faefadc4a991f8c6ec91da

    • SHA512

      cc2ce6a54514181ec3885d1c758966a29a61955904f69bc1c3645c1b9043a9e9c8f235fc55e77d44ec8d042759466bdd586c9e35bde3ab6fbf38685d876b6064

    • SSDEEP

      98304:VYiMYUoNwV6rIvrcQ87RySdX8zsw2ngP/D8+J8RQe5Nm/ZAD+sjCxgo6Y:VYFsNwV6Ev4RjZ8zsFoDRve58pgPol

    Score
    10/10
    raccoon7ec0af105a2631ea432df2de38161395stealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks