raccoon | 743855b5ecebd4978b85936aac8a9430c67b6f97f9bccdf5bf0d8ce6cfdccfb5 | Triage

Sharing

General

Target

uр_lоader.zip
Size

11.8MB
Sample

230424-rwkrkscd74
MD5

8b4d1f4defafa7b358e4fbe11cd23fe7
SHA1

3ffce19c7c0c4c01b83220c6f810c4c299a73bd3
SHA256

743855b5ecebd4978b85936aac8a9430c67b6f97f9bccdf5bf0d8ce6cfdccfb5
SHA512

929ad0b4ce37ef4312067bc8038b258a462f0f94bf78f710d84b4a683e370295bf3be4d4b95ae417e11174889fa0138b7a56eb688eeb2538d2d448658e61a774
SSDEEP

196608:k39pYEkh2j1S25r4bO1M347w8AeB6BoOS/NKF/8eAU7QZYI:k39pYdoxS6r4bO1okGRSkcU7QZt

Score

10^/10

raccoon f26f614d4c0bc2bcd6601785661fb5cf stealer

Malware Config

Extracted

Family

raccoon

Botnet

f26f614d4c0bc2bcd6601785661fb5cf

C2

http://37.220.87.66/

xor.plain

Targets

- Target
  
  u_lader.exe
- Size
  
  1024.0MB
- MD5
  
  f79640811904818e851b51b52fb86e87
- SHA1
  
  0bc13a1a573498ebbccf7d03fe313dabbc8bd4da
- SHA256
  
  a13bffe55644f5ca4048202fbc87b2a2d7f6321f094a14bc538075dc40f50af9
- SHA512
  
  851eec39a4d49340c8637c841f4cbc16ae4b56eb72892b6699fee76ed34e7372973b3be0413cdf71e696285c0781fb389de048139be4fd17b1dcd2549f261ed0
- SSDEEP
  
  196608:dCPOqMTKbLeO9/cRS/U7mfoGGq5IR805gYZcjTBqCs+:MPOreXem/cRS/oO4h5gYZYTBQ
Score

10^/10

raccoon f26f614d4c0bc2bcd6601785661fb5cf stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

raccoonf26f614d4c0bc2bcd6601785661fb5cfstealer

behavioral2

raccoonf26f614d4c0bc2bcd6601785661fb5cfstealer