raccoon | 323721abf8944d47b096e21c141208de8ad4bdd3e63cabf171ec03a35974026c | Triage

Submit
Reports

Overview

overview

Static

static

1

323721abf8...c.appx

windows7-x64

323721abf8...c.appx

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

323721abf8944d47b096e21c141208de8ad4bdd3e63cabf171ec03a35974026c
Size

6.1MB
Sample

230930-jacj3sbb52
MD5

94c48a90a871ed2b1e61e0bcd043438d
SHA1

2ee786db7725ff1a2fa97d5e717e5bdabf51b97f
SHA256

323721abf8944d47b096e21c141208de8ad4bdd3e63cabf171ec03a35974026c
SHA512

717e5b7a2b79911cd806ff77860d761cf2da83b98747598bff81daf364353b7d48bcd1246af63145a558d4411dbfff3e20fd5b9f0ec33e78b2521c01d51dff08
SSDEEP

196608:mURCLABMGC8FbjtbCgwLcKSz3dM5euASKnRcS:mRrRQhCAKSz3cm9nV

Score

10^/10

raccoon 5e2505d8647542f05843f89ae7cd18e7 stealer

Static task

static1

Behavioral task

behavioral1

Sample

323721abf8944d47b096e21c141208de8ad4bdd3e63cabf171ec03a35974026c.appx

Resource

win7-20230831-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

323721abf8944d47b096e21c141208de8ad4bdd3e63cabf171ec03a35974026c.appx

Resource

win10v2004-20230915-en

raccoon 5e2505d8647542f05843f89ae7cd18e7 stealer

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Botnet

5e2505d8647542f05843f89ae7cd18e7

C2

http://5.75.241.110:80

xor.plain

Targets

- Target
  
  323721abf8944d47b096e21c141208de8ad4bdd3e63cabf171ec03a35974026c
- Size
  
  6.1MB
- MD5
  
  94c48a90a871ed2b1e61e0bcd043438d
- SHA1
  
  2ee786db7725ff1a2fa97d5e717e5bdabf51b97f
- SHA256
  
  323721abf8944d47b096e21c141208de8ad4bdd3e63cabf171ec03a35974026c
- SHA512
  
  717e5b7a2b79911cd806ff77860d761cf2da83b98747598bff81daf364353b7d48bcd1246af63145a558d4411dbfff3e20fd5b9f0ec33e78b2521c01d51dff08
- SSDEEP
  
  196608:mURCLABMGC8FbjtbCgwLcKSz3dM5euASKnRcS:mRrRQhCAKSz3cm9nV
Score

10^/10

raccoon 5e2505d8647542f05843f89ae7cd18e7 stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer payload
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

raccoon5e2505d8647542f05843f89ae7cd18e7stealer

© 2018-2025

Terms | Privacy