Overview

overview

10

Static

static

1

PremiumFil...51.rar

windows7-x64

10

PremiumFil...51.rar

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    PremiumFileT13-Pass-55551.rar

  • Size

    24.5MB

  • Sample

    230401-cqx3dsfd38

  • MD5

    a75ef1b830c86a85166dbfa99d0338ed

  • SHA1

    d8b478e0461d4008c59b71aaf6298bd61469acd9

  • SHA256

    1ed375dc67ad8c245211d0fde7b1d8d068268cafef26162fffb95eb5037578d7

  • SHA512

    a25cc94b8b3239fbf44e6d7ba1a832636cc143e8d28fa47efea2bd8e653749192f22e2a01ed264134ffbdf20084d1d9cfc148e9481075dc129333170b8894405

  • SSDEEP

    786432:Jgl+WaEcSSZKuS+HScq4p86auFhFJ6EeM41OrvnAGlif2X5XkA:WM7jj1SEqC86xWEAOfHZ50A

Score
10/10
raccoonee2a3d190100b91c20d8bc284238dda6stealer

Malware Config

Extracted

Family

raccoon

Botnet

ee2a3d190100b91c20d8bc284238dda6

C2

http://45.15.156.144/

rc4.plain

Targets

    • Target

      PremiumFileT13-Pass-55551.rar

    • Size

      24.5MB

    • MD5

      a75ef1b830c86a85166dbfa99d0338ed

    • SHA1

      d8b478e0461d4008c59b71aaf6298bd61469acd9

    • SHA256

      1ed375dc67ad8c245211d0fde7b1d8d068268cafef26162fffb95eb5037578d7

    • SHA512

      a25cc94b8b3239fbf44e6d7ba1a832636cc143e8d28fa47efea2bd8e653749192f22e2a01ed264134ffbdf20084d1d9cfc148e9481075dc129333170b8894405

    • SSDEEP

      786432:Jgl+WaEcSSZKuS+HScq4p86auFhFJ6EeM41OrvnAGlif2X5XkA:WM7jj1SEqC86xWEAOfHZ50A

    Score
    10/10
    raccoonee2a3d190100b91c20d8bc284238dda6stealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks