Overview

overview

10

Static

static

10

2560-2512-...ry.exe

windows7-x64

2560-2512-...ry.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    2560-2512-0x0000000000400000-0x0000000000445000-memory.dmp

  • Size

    276KB

  • MD5

    68df1b5445c124d0c694752e5da7548a

  • SHA1

    23a6e440a9bcbb6b3e5143ca8544108179e80e3b

  • SHA256

    3a56c01b6789276de02b059b13a1017f30f8b34cc70d700a4764d771640bf084

  • SHA512

    543d8eb27626d590cec8d5dc127f8c2703a7a9ccb4daab53f9304015801abeaeda5068de9edf429dd175fc69677c9309f742a8c68234cd90a7d83651beb3f94f

  • SSDEEP

    6144:icNf7P/wxlb7BmH09No59hdjhkeCFWO3EMQ:FN7pA6zM

Score
10/10
fc8427198f843d72c1aa8a66db1a98f3raccoon

Malware Config

Extracted

Family

raccoon

Botnet

fc8427198f843d72c1aa8a66db1a98f3

C2

http://193.149.180.192/

xor.plain

Signatures

  • Raccoon family
    raccoon
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2560-2512-0x0000000000400000-0x0000000000445000-memory.dmp
    .exe windows x86


    Headers

    Sections