Overview

overview

10

Static

static

3

file.exe

windows7-x64

10

file.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file.exe

  • Size

    336KB

  • Sample

    230617-xsmdwscc7z

  • MD5

    e94ec358349808b167fe25704bbb1c43

  • SHA1

    6c48cab4905b96605d64de1718c6fe07b17392c0

  • SHA256

    f63154fccd7521dbe450f56aefff2a73d199489f8b68be7bd03befc5a98ddc36

  • SHA512

    a2a890b872704b49b0692b077439ee2a65e73641553729f614c5b230df0591d59984f3d564ffde9d11223133bedaf4a70e2db7075b4e5ca9de9d8bd5f7798ad7

  • SSDEEP

    6144:b46HZImXdPNhShn6XpLaJba4XcwfkBYuOVx6rfWd+V9nJ2/FnRy5pg:b46HZlXXhOnY9a9PswfkBYuo0DLnJ2dP

Score
10/10
raccoona8557a01243914ccfb9f74ba3a926fa2stealer

Malware Config

Extracted

Family

raccoon

Botnet

a8557a01243914ccfb9f74ba3a926fa2

C2

http://5.42.64.17:80/

http://5.42.65.62:80/
xor.plain

Targets

    • Target

      file.exe

    • Size

      336KB

    • MD5

      e94ec358349808b167fe25704bbb1c43

    • SHA1

      6c48cab4905b96605d64de1718c6fe07b17392c0

    • SHA256

      f63154fccd7521dbe450f56aefff2a73d199489f8b68be7bd03befc5a98ddc36

    • SHA512

      a2a890b872704b49b0692b077439ee2a65e73641553729f614c5b230df0591d59984f3d564ffde9d11223133bedaf4a70e2db7075b4e5ca9de9d8bd5f7798ad7

    • SSDEEP

      6144:b46HZImXdPNhShn6XpLaJba4XcwfkBYuOVx6rfWd+V9nJ2/FnRy5pg:b46HZlXXhOnY9a9PswfkBYuo0DLnJ2dP

    Score
    10/10
    raccoona8557a01243914ccfb9f74ba3a926fa2stealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Raccoon Stealer payload

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks