raccoon | 289d0ef8125626b41ad9fcc7c55cca955b333f4d68a68896cee21e36c0e92d83 | Triage

Sharing

General

Target

E46B.exe
Size

2.5MB
Sample

221012-rnrj6afbej
MD5

bd6ccd83e2784420046d3a4813f7568d
SHA1

01fdd76f51e6079d6137cfaa79f91b3ef6aa2f9b
SHA256

289d0ef8125626b41ad9fcc7c55cca955b333f4d68a68896cee21e36c0e92d83
SHA512

d0982afcfef5b49410b3edb883dc09a0d43603a67bb348ff502c56646ecdf4c93a4dd07d78ffcf3f284ea6f79801d05fa81cdaec801f37581deaa05880df8d88
SSDEEP

24576:YtSGHGwH+1Y4YX5Y1YyesbBfRMG/dt9BsNXi8Teg74Xva0bWArL0Etbl3RuQ553F:YfHGwHR4YY9cXi8qsMa0bWArYERl3h

Score

10^/10

raccoon 1a17d9aed7a239440deb75d7a177f406 stealer

Malware Config

Extracted

Family

raccoon

Botnet

1a17d9aed7a239440deb75d7a177f406

C2

http://193.38.55.180/

rc4.plain

Targets

- Target
  
  E46B.exe
- Size
  
  2.5MB
- MD5
  
  bd6ccd83e2784420046d3a4813f7568d
- SHA1
  
  01fdd76f51e6079d6137cfaa79f91b3ef6aa2f9b
- SHA256
  
  289d0ef8125626b41ad9fcc7c55cca955b333f4d68a68896cee21e36c0e92d83
- SHA512
  
  d0982afcfef5b49410b3edb883dc09a0d43603a67bb348ff502c56646ecdf4c93a4dd07d78ffcf3f284ea6f79801d05fa81cdaec801f37581deaa05880df8d88
- SSDEEP
  
  24576:YtSGHGwH+1Y4YX5Y1YyesbBfRMG/dt9BsNXi8Teg74Xva0bWArL0Etbl3RuQ553F:YfHGwHR4YY9cXi8qsMa0bWArYERl3h
Score

10^/10

raccoon 1a17d9aed7a239440deb75d7a177f406 stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

raccoon1a17d9aed7a239440deb75d7a177f406stealer

behavioral2

raccoon1a17d9aed7a239440deb75d7a177f406stealer