raccoon | 86e4b056bb87b626fe861f4de13fa31c4b3fb0ca648fe61a6d5587f9cd0ad9ec | Triage

Resubmissions

03-11-2022 21:39

221103-1hykysfed8 10

Sharing

General

Target

Wondershare Filmora 11.rar
Size

8.8MB
Sample

221103-1hykysfed8
MD5

a4f0d1163f7c4e58727042a5fe99d4d0
SHA1

f9273b347c7c17f8e57833629e43edfea6d40340
SHA256

86e4b056bb87b626fe861f4de13fa31c4b3fb0ca648fe61a6d5587f9cd0ad9ec
SHA512

2187a5992a703768fcc0d31b8406a33e313d6a53944d100cd97c25063d2fa3728f6c1e1f978080c74c74fe03db45a077f66811af75fcfc96b2efd368ffb9b9c5
SSDEEP

196608:0Z+C2dlEM2e0aHOG/LfGAWtbfpxJGEyQ5KzikAjbgr7djQ5vcb:0Z9e0aJ/TQEegzikd1k9cb

Score

10^/10

raccoon 55141fdba30e9c28fe0ae2e082b22897 stealer

Malware Config

Extracted

Family

raccoon

Botnet

55141fdba30e9c28fe0ae2e082b22897

C2

http://45.15.156.72/

rc4.plain

Targets

- Target
  
  Setup.exe
- Size
  
  724.9MB
- MD5
  
  a34c0da1fcb5687b4f1da693f091d585
- SHA1
  
  c6fba65950d80f8447a0b483023fde2a77069f1c
- SHA256
  
  cbec5a09e5ab83b8f0233eebe71ec965f54ee62a51ff95044503429e6d304e46
- SHA512
  
  42c7ddb296be0fba16d0167b086e8e89eafbde7c4a30c0fa5a55b9d9c2a37e6cc77854885cb090d8ee62cddfe4d2c478715a151ecfb3165d5fb832706a388ee9
- SSDEEP
  
  24576:eNcG3DmVrbWv+6wV/+m9zsZ/rTZ3rpLe1V13rpeBxLlMkLQq5a93wtTt52lqNz:eNcGpJj2lqJ
Score

10^/10

raccoon 55141fdba30e9c28fe0ae2e082b22897 stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

raccoon55141fdba30e9c28fe0ae2e082b22897stealer

behavioral2

raccoon55141fdba30e9c28fe0ae2e082b22897stealer