raccoon | 427cc8a27923ac24ae0423bca2ae8d08f53a599d0ea5cf7ff3e7c68cc4bf4176 | Triage

Sharing

General

Target

Sample.zip
Size

6.8MB
Sample

230222-nak9faba95
MD5

df0b5aadd5d94b916edf270a865d8f8c
SHA1

4e256fac88f6ed63088a35e91075c95afc7a3bb6
SHA256

427cc8a27923ac24ae0423bca2ae8d08f53a599d0ea5cf7ff3e7c68cc4bf4176
SHA512

79d94defa3f85dea1ec62519ef96aa08f0cc3a60aaa382582fbec67995f3ea75673ad931162bb0af35070cecb2ab7c6434a7abc5c1ea65b91898274823747546
SSDEEP

196608:xn+7aI/2bhfH7F/SRauZUPHQD2xx/wewMnk6mjRi/H/8obT:xn+7aVbhfH7F/4u0Ax/wewB7jRiv/NT

Score

10^/10

raccoon 1269ed6cdc166a49ecc72e46095cface stealer

Malware Config

Extracted

Family

raccoon

Botnet

1269ed6cdc166a49ecc72e46095cface

C2

http://79.137.197.160/

http://79.137.197.190/

rc4.plain

Targets

- Target
  
  Setup.exe
- Size
  
  726.0MB
- MD5
  
  88f5792ceda4df58f4c9bec9bbdd4a04
- SHA1
  
  60bf9077b57289caa614025bf2824eab086b2157
- SHA256
  
  021ebf3c52ec1eb0b1ad741222f3b6795f794e26cc043beecf802a58d3ec2904
- SHA512
  
  61f065f317c7f66081223b66f6653e118e93e778a3350f0a57867938dca2dfc8c57d157d0ae02f72b93904fefa24cf541975443867f09cb4e13d4d77139781d8
- SSDEEP
  
  98304:SnWvdJR3w+AZorxot0eX+9mQe+Azi7vDPXHjBs0gChji/AEipDFXfY7k/I:Sn2D3K3G7YUNs+EgJg7aI
Score

10^/10

raccoon 1269ed6cdc166a49ecc72e46095cface stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

raccoon1269ed6cdc166a49ecc72e46095cfacestealer