Overview

overview

10

Static

static

dridex

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    199a20b72c4eb70450a036e25f8abc1eae9b0ba5ab269651d25480b909ac6168

  • Size

    594KB

  • Sample

    221125-cp8shahb5w

  • MD5

    811f64ea53b76f4e63f3baa9cbf449af

  • SHA1

    bdbb1cb65db56922bdab468e47a4b4ecfad9bc13

  • SHA256

    199a20b72c4eb70450a036e25f8abc1eae9b0ba5ab269651d25480b909ac6168

  • SHA512

    3f0f7ba95068b56bb604e564c01ea6bb3b0dcd6a10d437301467a56b823a7e7c040ed16ed989bd444239fee2265248f264a86d1a1a7c9f610666679c3f99caa1

  • SSDEEP

    12288:+wbZEYGhNrkgCpLQX1/5kdPHT2/OdMuuTCUdsmGNN3vSkiLEOPtttbpXbqYr0IB/:lAkbp8

Score
10/10
raccoon16465d0e7bfd19684d4e56a43306c91bstealer

Malware Config

Extracted

Family

raccoon

Botnet

16465d0e7bfd19684d4e56a43306c91b

C2

http://79.137.196.11/

rc4.plain

Targets

    • Target

      199a20b72c4eb70450a036e25f8abc1eae9b0ba5ab269651d25480b909ac6168

    • Size

      594KB

    • MD5

      811f64ea53b76f4e63f3baa9cbf449af

    • SHA1

      bdbb1cb65db56922bdab468e47a4b4ecfad9bc13

    • SHA256

      199a20b72c4eb70450a036e25f8abc1eae9b0ba5ab269651d25480b909ac6168

    • SHA512

      3f0f7ba95068b56bb604e564c01ea6bb3b0dcd6a10d437301467a56b823a7e7c040ed16ed989bd444239fee2265248f264a86d1a1a7c9f610666679c3f99caa1

    • SSDEEP

      12288:+wbZEYGhNrkgCpLQX1/5kdPHT2/OdMuuTCUdsmGNN3vSkiLEOPtttbpXbqYr0IB/:lAkbp8

    Score
    10/10
    raccoon16465d0e7bfd19684d4e56a43306c91bstealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Matrix

Tasks