Overview

overview

10

Static

static

1

Pass_123_C...12.rar

windows7-x64

10

Pass_123_C...12.rar

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Pass_123_CompleteFileV12.rar

  • Size

    19.2MB

  • Sample

    230325-w9srkaga3x

  • MD5

    3a8555c6e7f74564d312071841637ae7

  • SHA1

    a0e3fb26b97216a1b15152be55790612de918239

  • SHA256

    ee7fd674223bfee0f491a4357ac25517dadf4bf7b92439d2727118040192fa0d

  • SHA512

    bc840d757b48821cdb70647b0efc639a852f9eb369547b4a654ece26708f1c83096db5a23f89be4e514e9e6ac9ca2a26bf809746755a4435b43a4167ce73fd00

  • SSDEEP

    393216:SmegysruL09RG/DHNWsJP4XkHofMNyVcs+MaxRAX/lW27U/20AcP7nkfB3:0gysC8GrtsXkI0sWamRAX/gD7k53

Score
10/10
raccoon1196de9cec79da84686d34883da05a1estealer

Malware Config

Extracted

Family

raccoon

Botnet

1196de9cec79da84686d34883da05a1e

C2

http://94.142.138.227/

rc4.plain

Targets

    • Target

      Pass_123_CompleteFileV12.rar

    • Size

      19.2MB

    • MD5

      3a8555c6e7f74564d312071841637ae7

    • SHA1

      a0e3fb26b97216a1b15152be55790612de918239

    • SHA256

      ee7fd674223bfee0f491a4357ac25517dadf4bf7b92439d2727118040192fa0d

    • SHA512

      bc840d757b48821cdb70647b0efc639a852f9eb369547b4a654ece26708f1c83096db5a23f89be4e514e9e6ac9ca2a26bf809746755a4435b43a4167ce73fd00

    • SSDEEP

      393216:SmegysruL09RG/DHNWsJP4XkHofMNyVcs+MaxRAX/lW27U/20AcP7nkfB3:0gysC8GrtsXkI0sWamRAX/gD7k53

    Score
    10/10
    raccoon1196de9cec79da84686d34883da05a1estealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks