raccoon | b7a6a711a198ca30138c3036f198f8c7fb847d812c4d07bf31f70efc8a7546c2 | Triage

Sharing

General

Target

72cb73fe5b226bb65112be732b11f735
Size

497KB
Sample

231226-qwq3xsbfh4
MD5

72cb73fe5b226bb65112be732b11f735
SHA1

e9a1c2ac6ab61f66a2912caa91dd27723e6815f0
SHA256

b7a6a711a198ca30138c3036f198f8c7fb847d812c4d07bf31f70efc8a7546c2
SHA512

c66ea2de55b8692d0112b41a3fd93d81b1c6d71d965a9fd6e0d7c5769d0844bdb7ac074be442c5f062cb5b2d46c9b1d230ada3212a8abdab28ffeacb34217149
SSDEEP

12288:dYtVdmQguZWSUFq8iR/ZHrN6ebX7ltP+z/P4X:dEdmix9ZHhhX7lUE

Score

10^/10

raccoon b5998c5938c0648ce1e41086dc9f3e22ac1750bd stealer

Malware Config

Extracted

Family

raccoon

Version

1.7.3

Botnet

b5998c5938c0648ce1e41086dc9f3e22ac1750bd

Attributes

url4cnc
https://telete.in/forkmaster123

rc4.plain

rc4.plain

Targets

- Target
  
  72cb73fe5b226bb65112be732b11f735
- Size
  
  497KB
- MD5
  
  72cb73fe5b226bb65112be732b11f735
- SHA1
  
  e9a1c2ac6ab61f66a2912caa91dd27723e6815f0
- SHA256
  
  b7a6a711a198ca30138c3036f198f8c7fb847d812c4d07bf31f70efc8a7546c2
- SHA512
  
  c66ea2de55b8692d0112b41a3fd93d81b1c6d71d965a9fd6e0d7c5769d0844bdb7ac074be442c5f062cb5b2d46c9b1d230ada3212a8abdab28ffeacb34217149
- SSDEEP
  
  12288:dYtVdmQguZWSUFq8iR/ZHrN6ebX7ltP+z/P4X:dEdmix9ZHhhX7lUE
Score

10^/10

raccoon b5998c5938c0648ce1e41086dc9f3e22ac1750bd stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

raccoonb5998c5938c0648ce1e41086dc9f3e22ac1750bdstealer

behavioral2

raccoonb5998c5938c0648ce1e41086dc9f3e22ac1750bdstealer