raccoon | 4baa079f9869750b3a80b3e0407fe815[.]exe | Triage

Submit
Reports

Overview

overview

Static

static

4baa079f98...15.exe

windows7-x64

1

4baa079f98...15.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

94fa2e342dbff7eac761a790266118fb raccoon

1 signatures

Behavioral task

behavioral1

Sample

4baa079f9869750b3a80b3e0407fe815.exe

Resource

win7-20220901-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

4baa079f9869750b3a80b3e0407fe815.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

4baa079f9869750b3a80b3e0407fe815.exe
Size

57KB
MD5

4baa079f9869750b3a80b3e0407fe815
SHA1

a4749af2b82bfb8060b4a519de516c63022906a3
SHA256

6dd68bd19186bce3446ad8dfba5d79dd4bf2525642b5886f775e8ed105a2089a
SHA512

617e82779cf42489c3f9cef773be9fcf2bf39fd57865c8bf0e92c9b588f21a06ef84b250756a9f65eb695da2ed6abba0e641eb334fab21529e1cc78fae7498a4
SSDEEP

1536:IVp01Eca2z/LvhbUDZUN1T04K3rJJOFOE:j1EcfBUDZi03K

Score

10^/10

94fa2e342dbff7eac761a790266118fb raccoon

Malware Config

Extracted

Family

raccoon

Botnet

94fa2e342dbff7eac761a790266118fb

C2

http://87.251.77.253/

http://87.251.77.27/

rc4.plain

Signatures

Raccoon family
raccoon

Files

4baa079f9869750b3a80b3e0407fe815.exe
.exe windows x86

f15c46dd0ebd22938b2ec56664ea6a28

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
CreateFileW
lstrlenA
LocalAlloc
LoadLibraryA

ole32

CoInitialize

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy