raccoon | 3767b2aa5033d8a966e8217dec4af05cc994b76347411b41599e3e4309ea3d98 | Triage

Sharing

General

Target

4581fe88b07c75a58f2d568a906666d7
Size

527KB
Sample

240106-g3nfyaabel
MD5

4581fe88b07c75a58f2d568a906666d7
SHA1

fe10977737ae6039559d68b6def0dc268e3c4944
SHA256

3767b2aa5033d8a966e8217dec4af05cc994b76347411b41599e3e4309ea3d98
SHA512

ac77bdee21be4c0597e8350c7838e1f0cd781f72e16bcc0baf6da14f26f4e67595c65042e685c722f3d2ba4e5631faf2888441ce1cbccf96d798dbb2caee84d1
SSDEEP

12288:oTkwsIyjS+USGDAzDuGTHTFIhKi6toBPAi:oFIO+dfPRgBPA

Score

10^/10

raccoon 8ec2927a41bb4594b3e86ccd49ac5ba0d349a387 stealer

Malware Config

Extracted

Family

raccoon

Version

1.7.3

Botnet

8ec2927a41bb4594b3e86ccd49ac5ba0d349a387

Attributes

url4cnc
https://telete.in/forkmaster123

rc4.plain

rc4.plain

Targets

- Target
  
  4581fe88b07c75a58f2d568a906666d7
- Size
  
  527KB
- MD5
  
  4581fe88b07c75a58f2d568a906666d7
- SHA1
  
  fe10977737ae6039559d68b6def0dc268e3c4944
- SHA256
  
  3767b2aa5033d8a966e8217dec4af05cc994b76347411b41599e3e4309ea3d98
- SHA512
  
  ac77bdee21be4c0597e8350c7838e1f0cd781f72e16bcc0baf6da14f26f4e67595c65042e685c722f3d2ba4e5631faf2888441ce1cbccf96d798dbb2caee84d1
- SSDEEP
  
  12288:oTkwsIyjS+USGDAzDuGTHTFIhKi6toBPAi:oFIO+dfPRgBPA
Score

10^/10

raccoon 8ec2927a41bb4594b3e86ccd49ac5ba0d349a387 stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

raccoon8ec2927a41bb4594b3e86ccd49ac5ba0d349a387stealer

behavioral2