General

  • Target

    readerdc64_br_ka_cra_mdr_install.exe

  • Size

    1.3MB

  • Sample

    230413-makr8sag24

  • MD5

    2a28b875cdc2f3eae4871c4732854f22

  • SHA1

    c31dfe79e224c6726b2f250fbfecda792aa4cb56

  • SHA256

    95c5947e021a773ce1cfd4e774fe69d7a50bad31810cdddd7b72fd1a2a3cf617

  • SHA512

    d29fa59790c61c2c161b124fd43bf874ea4b99c86511d1b169b10d7301710107771a45c36a334f3093db0e891f687b12c74ff22e7d4605f039f738ebc6a5cb04

  • SSDEEP

    24576:slv110ltOoV5/Bh7uVIjpQOyTOD0YHqI61tPd6ew7KRualKIYwR5UlgsmxLSkNR6:WvXyOYp9QOORI6fPd6ew7O7YwR5JwkNY

Score
10/10

Malware Config

Extracted

Family

raccoon

rc4.plain

Targets

    • Target

      readerdc64_br_ka_cra_mdr_install.exe

    • Size

      1.3MB

    • MD5

      2a28b875cdc2f3eae4871c4732854f22

    • SHA1

      c31dfe79e224c6726b2f250fbfecda792aa4cb56

    • SHA256

      95c5947e021a773ce1cfd4e774fe69d7a50bad31810cdddd7b72fd1a2a3cf617

    • SHA512

      d29fa59790c61c2c161b124fd43bf874ea4b99c86511d1b169b10d7301710107771a45c36a334f3093db0e891f687b12c74ff22e7d4605f039f738ebc6a5cb04

    • SSDEEP

      24576:slv110ltOoV5/Bh7uVIjpQOyTOD0YHqI61tPd6ew7KRualKIYwR5UlgsmxLSkNR6:WvXyOYp9QOORI6fPd6ew7O7YwR5JwkNY

    Score
    10/10
    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      out.upx

    • Size

      3.8MB

    • MD5

      7198f1816951a882ba00e50e3cf57e17

    • SHA1

      27e572515b5138930c7d7c3eed571e53f6344ba6

    • SHA256

      39894f104f6efdb1728fff2d66c8adcea3e708148f9b722c6a7434b96a79dbd0

    • SHA512

      6be23d56d8170495d6b4dcce782a323e453909d6c3671f26181f182b73db894e28941479989f3cd87b34c4354b23a813ceae4d83a6ece2d196cb0a9cbe79c63e

    • SSDEEP

      98304:10914toyPGpXqDd2Gj89p6Pzyk4LZXYd/6LDmjKr:1k14tonq9ZaDmjK

    Score
    1/10

MITRE ATT&CK Enterprise v6

Tasks