Overview

overview

10

Static

static

Hack2023/d...ty.dll

windows7-x64

1

Hack2023/d...ty.dll

windows10-2004-x64

1

Hack2023/d...ce.dll

windows7-x64

1

Hack2023/d...ce.dll

windows10-2004-x64

1

Hack2023/setup.exe

windows7-x64

1

Hack2023/setup.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Hack2023.rar

  • Size

    27.7MB

  • Sample

    230126-s92spaff4z

  • MD5

    2f8fd04555cebde46f6cf93fcb6be816

  • SHA1

    bce9b627c8134dbf0a7f82c9f99863f10e4e3141

  • SHA256

    178d9fa0a79f3bb21b69ced898a49fb30c809eea89848aeeb4c8f16da795ce79

  • SHA512

    ac62332fd25c0ca30ec830e1503feb6abe05d9eee479e2b30e46f75a7a4c2f0315dd2e60b0c1397221118ef4184b2dd68183548cbb8d89fa8ca0c72ba5d53a37

  • SSDEEP

    786432:wrUUPoPtmFTO8ULzFF1HVBsd5YyB5zCL+Es9cuSYA+PhG:GUUPoPtmF0Lt4+y/zK+EOPhG

Score
10/10
raccoonf26f614d4c0bc2bcd6601785661fb5cfstealer

Malware Config

Extracted

Family

raccoon

Botnet

f26f614d4c0bc2bcd6601785661fb5cf

C2

http://77.73.134.82

http://83.217.11.23
rc4.plain

Targets

    • Target

      Hack2023/data/Unity.dll

    • Size

      27.7MB

    • MD5

      64b84dad582b8018d2b229d82a2abd0f

    • SHA1

      1df7465415993a60003a2eadf2e8806b6e789b6e

    • SHA256

      ffd4f11c1c1cee073c8a9093165b17a6515decd32df029045f2142024f802511

    • SHA512

      0d4054ff019b55101c2d8ecb859b51f78d15b5bbafeb11d98acb8431f4e1d6af9c3659e5ab0b1c8d08d657051c56fa41e2f64602781f3f0c7b7193ef0440e68c

    • SSDEEP

      393216:kYc306p4Y4Asw57EQ7P7f+l3Tu2J/kk3iplHWM/Ks0ykiaMqBc1hMDzRX7hn30k6:kenQkyl2M/YhF9xXk

    Score
    1/10
    behavioral1behavioral2

    • Target

      Hack2023/data/app/Packaged/Resource.dll

    • Size

      10.7MB

    • MD5

      641dadbb3f03938da99bf7c6c4cc482f

    • SHA1

      b21bdb69a17642ade8e62fcbd779ff1bc89ea809

    • SHA256

      883aefb081a1f9ef974ceb16e12c215e92fee13531c052279404bd11b2f8e479

    • SHA512

      7aea5f0db9b261a17801124d6eef0df2d3ada4a6f624c8f4f2ee519a61171a3f06de9032493e3309a1a982fd1218613dde73a942942df2a8ec367e7f66a531f5

    • SSDEEP

      196608:8B4DNtjVoWhIdAXplnpnh4uIKZ2K245peMKU3lRM9RVIO+QvSNG2uM+XGE4:04vWGIun1GKZ/2aZKU3lRvO+QvQgGP

    Score
    1/10
    behavioral3behavioral4

    • Target

      Hack2023/setup.exe

    • Size

      728.2MB

    • MD5

      638f6d4d8de4a680a2f3e1c7c760d7e2

    • SHA1

      926091f5e95263b9eed4c059fc2841e22339bb53

    • SHA256

      4b9dbcd9bebacee97e2d97d4d3b648bdada5ffd391ae1c31b36bff5066884e45

    • SHA512

      f83045c22af503eb23ef66208ad6474ec41293bf1c3764d66f9ff039579f02a46d5887a21f3751a31df65d13d6c730cea69f3ddccf0f4cef03495605e7c6084f

    • SSDEEP

      196608:xW4Es4CSLvvC/KHJ3tffLVAnz6hMDLT6KWNiUEq:zJSLvvW4BhjSnei1AiUT

    Score
    10/10
    raccoonf26f614d4c0bc2bcd6601785661fb5cfstealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral5behavioral6

MITRE ATT&CK Matrix

Tasks