Overview

overview

10

Static

static

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file.exe

  • Size

    3.9MB

  • Sample

    221027-16splsdhem

  • MD5

    64b30e9465580bc5af03f01e930e04b3

  • SHA1

    727f463e282cc19e4a55b96dd05c60d4bc8b460a

  • SHA256

    5a3544515807da069035c75e37e1570b893768eeab16385402b0464fd26272c0

  • SHA512

    d846ba776ff4ccfea1ab9f812266736d814b158731a0ec6e542c9d791d43714ff376f0746aad9257a60bc68b8b4a33f204763b5ba8cd5d4d988af504c9cea81c

  • SSDEEP

    98304:6PgeUa+s1ybDLoAu4xe8qm8jttGnwSYWqwO0+ny+UEq:6PcQynL3uuq3RtGCwO0wysq

Score
10/10
raccoon9b19cf60d9bdf65b8a2495aa965456c3stealer

Malware Config

Extracted

Family

raccoon

Botnet

9b19cf60d9bdf65b8a2495aa965456c3

C2

http://94.131.107.206

rc4.plain

Targets

    • Target

      file.exe

    • Size

      3.9MB

    • MD5

      64b30e9465580bc5af03f01e930e04b3

    • SHA1

      727f463e282cc19e4a55b96dd05c60d4bc8b460a

    • SHA256

      5a3544515807da069035c75e37e1570b893768eeab16385402b0464fd26272c0

    • SHA512

      d846ba776ff4ccfea1ab9f812266736d814b158731a0ec6e542c9d791d43714ff376f0746aad9257a60bc68b8b4a33f204763b5ba8cd5d4d988af504c9cea81c

    • SSDEEP

      98304:6PgeUa+s1ybDLoAu4xe8qm8jttGnwSYWqwO0+ny+UEq:6PcQynL3uuq3RtGCwO0wysq

    Score
    10/10
    raccoon9b19cf60d9bdf65b8a2495aa965456c3stealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks