Overview

overview

10

Static

static

1

AIDA64.exe

windows7-x64

1

AIDA64.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    AIDA64.exe

  • Size

    293.1MB

  • Sample

    230204-pdtknadb97

  • MD5

    e6899d4a73695e69e23101f7ae5a4979

  • SHA1

    4a0768e66eab97859479823f1968092822cd2710

  • SHA256

    67458b55526816f5ff9e9837008cd7ab4feca77fa83a5509c4cb93b2903b92a6

  • SHA512

    4d0a566e60a7979e8999a904e5761e58f5736f86619b8644e914fc6229302dc5b7a48c7c55370603af79d503a9d9e7a25d3eb15c9ada16b559e4484e54a72ae4

  • SSDEEP

    196608:aKJZn0pjP4Hxrx8ABvYU446EezqRJSzZVgx:PqURrx8O42ezqRJSdV

Score
10/10
raccoone03a7d21cf6c27d1c1b42b2ef6c4d83fstealer

Malware Config

Extracted

Family

raccoon

Botnet

e03a7d21cf6c27d1c1b42b2ef6c4d83f

C2

http://135.181.68.23/

rc4.plain

Targets

    • Target

      AIDA64.exe

    • Size

      293.1MB

    • MD5

      e6899d4a73695e69e23101f7ae5a4979

    • SHA1

      4a0768e66eab97859479823f1968092822cd2710

    • SHA256

      67458b55526816f5ff9e9837008cd7ab4feca77fa83a5509c4cb93b2903b92a6

    • SHA512

      4d0a566e60a7979e8999a904e5761e58f5736f86619b8644e914fc6229302dc5b7a48c7c55370603af79d503a9d9e7a25d3eb15c9ada16b559e4484e54a72ae4

    • SSDEEP

      196608:aKJZn0pjP4Hxrx8ABvYU446EezqRJSzZVgx:PqURrx8O42ezqRJSdV

    Score
    10/10
    raccoone03a7d21cf6c27d1c1b42b2ef6c4d83fstealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks