Overview

overview

10

Static

static

10

ff98b13777...45.exe

windows7-x64

1

ff98b13777...45.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ff98b13777dddc9f1ff7792cb9f4af7195adef8e48d5323839b93e49cc07bb45.zip

  • Size

    309KB

  • Sample

    230606-n37yxade49

  • MD5

    812720c0cda76dc8ad7ed7cba028e5a4

  • SHA1

    a265ee7f2192ad834111e322e87fa1ffd7267302

  • SHA256

    01558d71a29b2662204b04ea875c0f3ef979ad798024819ee7bfa38bd2099378

  • SHA512

    2a1bad739614dfc2442fe9f57e98169e64f94f3e25a501810c3b4e2f5b221756f5d95b25802cc2702eb8a643a24b0eee3f65ac7a3f09ba8a325f4949d06ccdb3

  • SSDEEP

    6144:9UCWiE4pU9Ty4P5ErYNvcRFva/WHkEHv2XBjvYqwexT2nSyTYS:SO69nmrYBcaeHY5AqwexqNj

Score
10/10
raccoon9a640d05e94f78be3fa26fcb2b698a50d8fd23b9

Malware Config

Extracted

Family

raccoon

Version

1.8.1

Botnet

9a640d05e94f78be3fa26fcb2b698a50d8fd23b9

Attributes
  • url4cnc

    https://telete.in/jredmankun

rc4.plain
rc4.plain

Targets

    • Target

      ff98b13777dddc9f1ff7792cb9f4af7195adef8e48d5323839b93e49cc07bb45

    • Size

      571KB

    • MD5

      4cc8c1ba833a7b1c32b25a2a2b2f3b55

    • SHA1

      49dcd925dd82823dbf6b260c774053e5779b05df

    • SHA256

      ff98b13777dddc9f1ff7792cb9f4af7195adef8e48d5323839b93e49cc07bb45

    • SHA512

      c78b50a23ee9d387086add261220313af7c3c16c45dfec550699aaffa5645ee1b43b9f973e5e85eeef059bb82cb38c5a83830190374df0426840e63e12bbceb7

    • SSDEEP

      12288:HPyvUhuDGncJlujEpr8qEFRkbNZ5tWDmp4NAc15Kp3CIF5j1QwZPYrE:Qwckyr8RkJXampEhoPa2PYw

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

1
T1130

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks