raccoon | 3737407d378b0e4f2d1c68c6290f56511fdaa53afc10b1f14f271b58df88c23d | Triage

Sharing

General

Target

a2bbeba6f74f6dcc72d042967580f6a8.exe
Size

6.4MB
Sample

230226-qv874sgh2z
MD5

a2bbeba6f74f6dcc72d042967580f6a8
SHA1

60d061eee8e3d5dc1a67a7739e437c9ffffdcf68
SHA256

3737407d378b0e4f2d1c68c6290f56511fdaa53afc10b1f14f271b58df88c23d
SHA512

1bcea3f375d15c2340335c000905b05a2c0afbdc9b8f326431cb98fce2e75e787043dad79d90e0f9f5a9fee0c1f03e27321947c5b2c9843ea00eedba537d3eec
SSDEEP

196608:awL+Jc1ORLmMRG71wKSchcM9d7OUNw9Mj0SwuLJl:B41EvSchzzzO9PSw

Score

10^/10

raccoon f26f614d4c0bc2bcd6601785661fb5cf stealer

Malware Config

Extracted

Family

raccoon

Botnet

f26f614d4c0bc2bcd6601785661fb5cf

C2

http://77.73.134.82

http://83.217.11.23

rc4.plain

Targets

- Target
  
  a2bbeba6f74f6dcc72d042967580f6a8.exe
- Size
  
  6.4MB
- MD5
  
  a2bbeba6f74f6dcc72d042967580f6a8
- SHA1
  
  60d061eee8e3d5dc1a67a7739e437c9ffffdcf68
- SHA256
  
  3737407d378b0e4f2d1c68c6290f56511fdaa53afc10b1f14f271b58df88c23d
- SHA512
  
  1bcea3f375d15c2340335c000905b05a2c0afbdc9b8f326431cb98fce2e75e787043dad79d90e0f9f5a9fee0c1f03e27321947c5b2c9843ea00eedba537d3eec
- SSDEEP
  
  196608:awL+Jc1ORLmMRG71wKSchcM9d7OUNw9Mj0SwuLJl:B41EvSchzzzO9PSw
Score

10^/10

raccoon f26f614d4c0bc2bcd6601785661fb5cf stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

raccoonf26f614d4c0bc2bcd6601785661fb5cfstealer