Overview

overview

10

Static

static

1

5288023466...f5.exe

windows7-x64

10

5288023466...f5.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5288023466d3fb96b19334b2518118f5

  • Size

    531KB

  • Sample

    231226-elbppsbafj

  • MD5

    5288023466d3fb96b19334b2518118f5

  • SHA1

    0411581d274e8dd02cdafe912d43b6df59f0ce0b

  • SHA256

    983dfa8c2d0b3504397327fcfa783e96e39538d0a8496b9ee912c18210adbe5b

  • SHA512

    c260a7dee278e2447df63575a833cd4a6e8db4eb5f81f40ce0622308f832cc75afb68d96b9e4078b878e2f2eb063aa2f35ce7760ecd15f2d61bbf9e6a2806c65

  • SSDEEP

    12288:ah77hp/a2CBWQ3gnVZd3OOm9Fd/rL2qsdG+hB+/e:ehpZCBWQQnVZNOT9F5mG+h8/e

Score
10/10
raccoon92be0387873e54dd629b9bfa972c3a9a88e6726cstealer

Malware Config

Extracted

Family

raccoon

Version

1.7.3

Botnet

92be0387873e54dd629b9bfa972c3a9a88e6726c

Attributes
  • url4cnc

    https://t.me/gishsunsetman

rc4.plain
rc4.plain

Targets

    • Target

      5288023466d3fb96b19334b2518118f5

    • Size

      531KB

    • MD5

      5288023466d3fb96b19334b2518118f5

    • SHA1

      0411581d274e8dd02cdafe912d43b6df59f0ce0b

    • SHA256

      983dfa8c2d0b3504397327fcfa783e96e39538d0a8496b9ee912c18210adbe5b

    • SHA512

      c260a7dee278e2447df63575a833cd4a6e8db4eb5f81f40ce0622308f832cc75afb68d96b9e4078b878e2f2eb063aa2f35ce7760ecd15f2d61bbf9e6a2806c65

    • SSDEEP

      12288:ah77hp/a2CBWQ3gnVZd3OOm9Fd/rL2qsdG+hB+/e:ehpZCBWQQnVZNOT9F5mG+h8/e

    Score
    10/10
    raccoon92be0387873e54dd629b9bfa972c3a9a88e6726cstealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Raccoon Stealer V1 payload

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks