Overview

overview

10

Static

static

10

2992-499-0...ry.exe

windows7-x64

2992-499-0...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2992-499-0x0000000000400000-0x0000000000425000-memory.dmp

  • Size

    148KB

  • MD5

    31a0bb44018ccccf5521eea7af36f3ee

  • SHA1

    bd3bee062beb0f4796a1b4e341b7fedcab708d07

  • SHA256

    66bd0a5ad21ec7fab91e6aa459d3dc045eea54e754794494caec3a3d0e411d6c

  • SHA512

    4cd78bfd4861c0e464d3d764b81eadca5bd9952199d67272100751524cccdf5164fb2504d063afb519e77f299bc4b02a67e126875a52ab9e4ab143a077a36eae

  • SSDEEP

    1536:GY5KCXch1xZEVQnPjUMg0XfXBOwbzR14iwelTKMTarb57b8CBm0DasBIdPKz0meY:1Xch1x0QPtfEwP/wUaR7b8CBmChIZKQ

Score
10/10
fc8427198f843d72c1aa8a66db1a98f3raccoon

Malware Config

Extracted

Family

raccoon

Botnet

fc8427198f843d72c1aa8a66db1a98f3

C2

http://91.235.234.235/

xor.plain

Signatures

Files

  • 2992-499-0x0000000000400000-0x0000000000425000-memory.dmp
    .exe windows x86


    Headers

    Sections