Overview

overview

10

Static

static

setupsoftapp19.0.zip

windows7-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    setupsoftapp19.0.zip

  • Size

    10.3MB

  • Sample

    230128-2x5s9agg95

  • MD5

    1983c1dcd13e9debea8153fef49881c4

  • SHA1

    d8970f0b7e3f7f880864c993596eda72bea161ce

  • SHA256

    b018ca3dd8bd167258d8ee4c50bf8901e725d1e74be932ad7217d34561627e45

  • SHA512

    3171461c9247a829291ffd5b7c70e4f01f81ebca1a425a064ff17d743c31592a81a2871f782751864e447fc3a7b1e5543ed7fb0983232602010a59011a605b87

  • SSDEEP

    196608:DMQwhi9/wJadlmN7MNEXEvLYnfFnJ/TGGa4lRcyPs8ZHTP66cHT:TwhI/F2KEUvLY9JLZa4ncX+u6cz

Score
10/10
raccoon3f4a8564e5026a245d6974b020b3f6destealer

Malware Config

Extracted

Family

raccoon

Botnet

3f4a8564e5026a245d6974b020b3f6de

C2

http://45.15.156.225/

rc4.plain

Targets

    • Target

      setupsoftapp19.0.zip

    • Size

      10.3MB

    • MD5

      1983c1dcd13e9debea8153fef49881c4

    • SHA1

      d8970f0b7e3f7f880864c993596eda72bea161ce

    • SHA256

      b018ca3dd8bd167258d8ee4c50bf8901e725d1e74be932ad7217d34561627e45

    • SHA512

      3171461c9247a829291ffd5b7c70e4f01f81ebca1a425a064ff17d743c31592a81a2871f782751864e447fc3a7b1e5543ed7fb0983232602010a59011a605b87

    • SSDEEP

      196608:DMQwhi9/wJadlmN7MNEXEvLYnfFnJ/TGGa4lRcyPs8ZHTP66cHT:TwhI/F2KEUvLY9JLZa4ncX+u6cz

    Score
    10/10
    raccoon3f4a8564e5026a245d6974b020b3f6destealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Matrix

Tasks