General
-
Target
https://telegra.ph/New-Soft-2023-02-14
-
Sample
230322-ydek6sch5w
Score
10/10
Static task
static1
URLScan task
urlscan1
Behavioral task
behavioral1
Sample
https://telegra.ph/New-Soft-2023-02-14
Resource
win10-20230220-en
windows10-1703-x64
15 signatures
1800 seconds
Malware Config
Extracted
Family
raccoon
Botnet
717609e6131226f92ce8ce08c34305be
C2
http://45.9.74.170
http://77.73.134.43
rc4.plain
Targets
-
-
Target
https://telegra.ph/New-Soft-2023-02-14
Score10/10-
Executes dropped EXE
-
Legitimate hosting services abused for malware hosting/C2
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-