General

  • Target

    38f4395008073538651fbad3c4398416

  • Size

    583KB

  • Sample

    231231-rax5sahdgm

  • MD5

    38f4395008073538651fbad3c4398416

  • SHA1

    46f7339621583b9cf370a562017cc42026c4c699

  • SHA256

    fc7afb7fe0cc4dc5f54131043f3eec58de51faa4966d879e550372bb576cf5f4

  • SHA512

    8acadbf04b29392ba0421d2420ee1212c3b0f96d29df450d06a90152094a075567309e4029a960eb0b9389812347118451b23387e0d93a502e6baafe517e6f40

  • SSDEEP

    12288:e1NfZnbdrgI1N9SxkHdeoleOEHG7wvHVUfvZTQVxXzPE:e9hrgI3TluHG7+4veRE

Malware Config

Extracted

Family

raccoon

Version

1.7.3

Botnet

cd8dc1031358b1aec55cc6bc447df1018b068607

Attributes
  • url4cnc

    https://telete.in/jagressor_kz

rc4.plain
rc4.plain

Targets

    • Target

      38f4395008073538651fbad3c4398416

    • Size

      583KB

    • MD5

      38f4395008073538651fbad3c4398416

    • SHA1

      46f7339621583b9cf370a562017cc42026c4c699

    • SHA256

      fc7afb7fe0cc4dc5f54131043f3eec58de51faa4966d879e550372bb576cf5f4

    • SHA512

      8acadbf04b29392ba0421d2420ee1212c3b0f96d29df450d06a90152094a075567309e4029a960eb0b9389812347118451b23387e0d93a502e6baafe517e6f40

    • SSDEEP

      12288:e1NfZnbdrgI1N9SxkHdeoleOEHG7wvHVUfvZTQVxXzPE:e9hrgI3TluHG7+4veRE

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

    • Raccoon Stealer V1 payload

MITRE ATT&CK Matrix ATT&CK v13

Defense Evasion

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Modify Registry

1
T1112

Tasks