raccoon | 2b574142c27e20f6fd8a1285772104c9e13774631d3173f2eb825dae4a6ffe65

Sharing

Copy URL

Twitter E-mail

General

Target

Raccoon.Stealer.v2.sha.zip
Size

589KB
Sample

221224-g4fsgsch2v
MD5

0831d0df9d7696f6aed73600539cdb3f
SHA1

a36cc1fde961edc0de12a70235517fcb9d8fe930
SHA256

2b574142c27e20f6fd8a1285772104c9e13774631d3173f2eb825dae4a6ffe65
SHA512

8618a315967c12116503a711030c6c3c1d6207b6ce121865944202556a1ea3ed7eca31fdf0b6f91193c38e352ad165b9a767514535c59a18cf056cf0472cd995
SSDEEP

12288:3T0zBDiyKxxceujRPQFW0WuKDHI9yWAryOMIAxQ2UvO5v6xATr0xEQB:oRiyKL4jR4c0oYFOMrUvOZV0xP

Malware Config

Extracted

Family

raccoon

Botnet

403f7b121a3afd9e8d27f945140b8a92

http://2.58.56.247

rc4.plain

Extracted

Family

raccoon

Botnet

59c9737264c0b3209d9193b8ded6c127

http://51.195.166.184/

rc4.plain

Extracted

Family

raccoon

Botnet

e2586fb50f7434bfb05d10accaefc49b

http://194.156.98.151

http://178.128.94.180

rc4.plain

Extracted

Family

raccoon

Botnet

3ed895c4ff5dc5ec85caa2a9d1bed0f2

http://51.195.166.184/

rc4.plain

Extracted

Family

raccoon

Botnet

5f3e2ed386ddeccffbb4e34c56fc2efd

http://192.248.184.34/

http://140.82.52.55/

rc4.plain

Extracted

Family

raccoon

Botnet

e585741d6b0b8a4e8192f16d8039618c

http://51.195.166.184/

rc4.plain

Extracted

Family

raccoon

Botnet

493cd800ef7e79f58f8ff5358ddf39e3

http://85.202.169.112/

rc4.plain

Extracted

Family

raccoon

Botnet

b695af1820665d4dec830ca4a9dcca08

http://91.194.11.43/

rc4.plain

Extracted

Family

raccoon

Botnet

501a1e4179cf717ac47928b0babb659b

http://51.195.166.184/

rc4.plain

Extracted

Family

raccoon

Botnet

e659c40e6a0038a59a752ff4d0ceb719

http://51.195.166.184/

rc4.plain

Extracted

Family

raccoon

Botnet

251130064569c4e8c0c5b31929396cc7

http://142.132.180.233/

rc4.plain

Extracted

Family

raccoon

Botnet

fb389acc0c06486bd2eaf61e0a781e10

http://51.195.166.184/

rc4.plain

Extracted

Family

raccoon

Botnet

918c80e5f68acd2d6e7bb4b7d37a9190

http://185.225.19.198/

rc4.plain

Extracted

Family

raccoon

Botnet

3ae13dbd91e0fa85463715dc48979fb2

http://51.195.166.184/

rc4.plain

Extracted

Family

raccoon

Botnet

8dfaf19d5f208c09ef40073e938545f5

http://51.195.166.184/

rc4.plain

Extracted

Family

raccoon

Botnet

b9418e8977fce1050745c6371e5d9b89

http://51.195.166.184/

rc4.plain

Extracted

Family

raccoon

Botnet

0d78fe0763f83f0ac733762de262c556

http://142.132.225.253/

rc4.plain

Extracted

Family

raccoon

Botnet

77975b9923aa5e257840086ae38f4f7c

http://31.13.195.44

rc4.plain

Extracted

Family

raccoon

Botnet

e2ae951b7762cdae39d49918c5b3283d

http://51.195.166.201/

rc4.plain

Targets

- Target
  
  f7b1aaae018d5287444990606fc43a0f2deb4ac0c7b2712cc28331781d43ae27
- Size
  
  55KB
- MD5
  
  eca370e62443218965eb27b1a61bb7a0
- SHA1
  
  4e48d0c38e0a4543137cd381abb38e6bd17f17aa
- SHA256
  
  f7b1aaae018d5287444990606fc43a0f2deb4ac0c7b2712cc28331781d43ae27
- SHA512
  
  6e0554a49c509a3c1c29f042746d18f924417692f3d4c2e8f55676bcc8bb7574ff3a8d4c131634601bd3da28c7c4ef4282c7002bb2a88a69c40e73aa23d58c81
- SSDEEP
  
  1536:qzwshK8pUMGxo0xwwW9VemFMGfpbbVD5ANyCa:wwshK8yMexbW9vJVD5ANs
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

Peripheral Device Discovery

T1120

System Information Discovery

T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

Sharing

General

Malware Config

Extracted

Extracted

Extracted

Extracted

Extracted

Extracted

Extracted

Extracted

Extracted

Extracted

Extracted

Extracted

Extracted

Extracted

Extracted

Extracted

Extracted

Extracted

Extracted

Targets

MITRE ATT&CK Matrix ATT&CK v6

Tasks

static1

behavioral1

behavioral2