raccoon | aba176220478b64db54ec6caf7cc46df9703c32e94273aa0368fbe65ce6f5aa6 | Triage

Submit
Reports

Overview

overview

Static

static

file.exe

windows7-x64

file.exe

windows10-2004-x64

Analysis

max time kernel
31s
max time network
34s
platform
windows7_x64
resource
win7-20221111-en
resource tags

arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system
submitted
31-01-2023 14:54

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

file.exe

Resource

win7-20221111-en

raccoon 960d8047e2829c4b87de991d706e2490 stealer

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

file.exe

Resource

win10v2004-20221111-en

raccoon 960d8047e2829c4b87de991d706e2490 stealer

windows10-2004-x64

2 signatures

150 seconds

Report Analysis Logs

General

Target

file.exe
Size

294KB
MD5

230d9421f84f0be0a8bbe86bd03e9629
SHA1

8e04318e54e37e23625a608daf39fe058c02690d
SHA256

aba176220478b64db54ec6caf7cc46df9703c32e94273aa0368fbe65ce6f5aa6
SHA512

d746a21a3083062ab1a8fe8594135b586403ff1de50ada3a65a85555464dc49d4a94a471ea5a9a6cb675e353fe53797950bb53aaee7752a418bf6a7f3def3f54
SSDEEP

3072:Y6uIHYbCLpB7R4WQh57U+RUySs3nci7iEOp8c0ADHS7f43H7BFhiAIBRCDR1:sOYbCLpAWQjzRjb3ceku6S7f4VRIj

Score

10^/10

raccoon 960d8047e2829c4b87de991d706e2490 stealer

Malware Config

Extracted

Family

raccoon

Botnet

960d8047e2829c4b87de991d706e2490

C2

http://45.15.156.209/

rc4.plain

Signatures

Raccoon
Raccoon is an infostealer written in C++ and first seen in 2019.
stealer raccoon

Processes

C:\Users\Admin\AppData\Local\Temp\file.exe
"C:\Users\Admin\AppData\Local\Temp\file.exe"
1⤵
PID:2000

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2000-54-0x000000000052B000-0x0000000000541000-memory.dmp

Filesize
88KB

Download
memory/2000-55-0x0000000000230000-0x000000000024C000-memory.dmp

Filesize
112KB

Download
memory/2000-56-0x0000000000400000-0x0000000000463000-memory.dmp

Filesize
396KB

Download

© 2018-2024

Terms | Privacy