Overview

overview

10

Static

static

3

1db2259b0d...9d.exe

windows7-x64

10

1db2259b0d...9d.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1db2259b0d11fa8ef8c85a8cafc37f9d.exe

  • Size

    331KB

  • Sample

    230622-tlh64sgf6w

  • MD5

    1db2259b0d11fa8ef8c85a8cafc37f9d

  • SHA1

    c59b9caa9526c297f834fd5fc840fc530c2c1f5b

  • SHA256

    d8559130616dcb860a123fd7228fda07563e4623efc4cc186fba1a695d8c83a2

  • SHA512

    7f0c7df90a92a662ec88323db8e6c520fd2809454d897a991b455daca0f1ba91d4a7874a742d33a86d39a1b4134aec9458c2b73b6a17197c0d0f47ee985417c8

  • SSDEEP

    6144:9A/8ic0HjmRESNERDFalTOkIRmL9n6lU2ycjC9mUWpzT:Xic0HK6SKJFKe+h

Score
10/10
raccoondiscoveryspywarestealer

Malware Config

Targets

    • Target

      1db2259b0d11fa8ef8c85a8cafc37f9d.exe

    • Size

      331KB

    • MD5

      1db2259b0d11fa8ef8c85a8cafc37f9d

    • SHA1

      c59b9caa9526c297f834fd5fc840fc530c2c1f5b

    • SHA256

      d8559130616dcb860a123fd7228fda07563e4623efc4cc186fba1a695d8c83a2

    • SHA512

      7f0c7df90a92a662ec88323db8e6c520fd2809454d897a991b455daca0f1ba91d4a7874a742d33a86d39a1b4134aec9458c2b73b6a17197c0d0f47ee985417c8

    • SSDEEP

      6144:9A/8ic0HjmRESNERDFalTOkIRmL9n6lU2ycjC9mUWpzT:Xic0HK6SKJFKe+h

    Score
    10/10
    raccoonstealerdiscoveryspyware

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Raccoon Stealer payload

    • Downloads MZ/PE file

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks