Overview

overview

10

Static

static

3

df14756a07...dc.exe

windows7-x64

10

df14756a07...dc.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    df14756a07d42a0e64b86e1c1038a1dc.exe

  • Size

    226KB

  • Sample

    230620-gm1rbsbc7w

  • MD5

    df14756a07d42a0e64b86e1c1038a1dc

  • SHA1

    f7e8a179137b00bc327e3b3d6cdd9f8ab23c7d6f

  • SHA256

    c96bc659a9f882f78b018eb6af1abddb4a1ffe7f959f056450399c27b97f70c8

  • SHA512

    aee0e5542e6aa3e1f2d1c13edc61faa274e96150d8c5ca635b08852360fb763711d789b3f9fd53c9146eb61565f973b302ea22818c3490c725a007ae4ba0a479

  • SSDEEP

    3072:0uEDVbCO4SRf0ryEiiiiiiiinVbf+Hcr7nTolCg/hP9hxbukTWMxkjAs1o4:rudCO4SRfZMiuE/B9hxbuUWh

Score
10/10
raccoondiscoveryspywarestealer

Malware Config

Targets

    • Target

      df14756a07d42a0e64b86e1c1038a1dc.exe

    • Size

      226KB

    • MD5

      df14756a07d42a0e64b86e1c1038a1dc

    • SHA1

      f7e8a179137b00bc327e3b3d6cdd9f8ab23c7d6f

    • SHA256

      c96bc659a9f882f78b018eb6af1abddb4a1ffe7f959f056450399c27b97f70c8

    • SHA512

      aee0e5542e6aa3e1f2d1c13edc61faa274e96150d8c5ca635b08852360fb763711d789b3f9fd53c9146eb61565f973b302ea22818c3490c725a007ae4ba0a479

    • SSDEEP

      3072:0uEDVbCO4SRf0ryEiiiiiiiinVbf+Hcr7nTolCg/hP9hxbukTWMxkjAs1o4:rudCO4SRfZMiuE/B9hxbuUWh

    Score
    10/10
    raccoondiscoveryspywarestealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Raccoon Stealer payload

    • Downloads MZ/PE file

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks