raccoon | af1beafe8b2042586f291bd09192e420349c87bfaf48233c9ae5ceae4b19df4d | Triage

Submit
Reports

Overview

overview

Static

static

1

6bb2444563...c0.exe

windows7-x64

6bb2444563...c0.exe

windows10-2004-x64

Sharing

General

Target

6bb2444563f03f98bcbb81453af4e8c0
Size

537KB
Sample

240120-2t6w5saaen
MD5

6bb2444563f03f98bcbb81453af4e8c0
SHA1

97f7d6c15d2a1cd34d32e6d6106fcf5e8a0515ed
SHA256

af1beafe8b2042586f291bd09192e420349c87bfaf48233c9ae5ceae4b19df4d
SHA512

dbf81f69c4e9086cf6da8e83f3f32346e44a590d4c037c02c83a5e3af2f666dec0a00a4eb296c90d54a4231b8060b76cf26147f4bb78b6e04d6009c77082be36
SSDEEP

6144:EbcmFgkJchzvcykzqib3gnPNZFXRu2kNOm9u2uC/rQrqQTWg/otXM566wOGrc2ur:df5vcZ3gnVZd3OOm9Fd/rL2qsdG5ufj

Score

10^/10

raccoon 92be0387873e54dd629b9bfa972c3a9a88e6726c stealer

Static task

static1

Behavioral task

behavioral1

Sample

6bb2444563f03f98bcbb81453af4e8c0.exe

Resource

win7-20231129-en

raccoon 92be0387873e54dd629b9bfa972c3a9a88e6726c stealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

6bb2444563f03f98bcbb81453af4e8c0.exe

Resource

win10v2004-20231215-en

raccoon 92be0387873e54dd629b9bfa972c3a9a88e6726c stealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Version

1.7.3

Botnet

92be0387873e54dd629b9bfa972c3a9a88e6726c

Attributes

url4cnc
https://t.me/gishsunsetman

rc4.plain

rc4.plain

Targets

- Target
  
  6bb2444563f03f98bcbb81453af4e8c0
- Size
  
  537KB
- MD5
  
  6bb2444563f03f98bcbb81453af4e8c0
- SHA1
  
  97f7d6c15d2a1cd34d32e6d6106fcf5e8a0515ed
- SHA256
  
  af1beafe8b2042586f291bd09192e420349c87bfaf48233c9ae5ceae4b19df4d
- SHA512
  
  dbf81f69c4e9086cf6da8e83f3f32346e44a590d4c037c02c83a5e3af2f666dec0a00a4eb296c90d54a4231b8060b76cf26147f4bb78b6e04d6009c77082be36
- SSDEEP
  
  6144:EbcmFgkJchzvcykzqib3gnPNZFXRu2kNOm9u2uC/rQrqQTWg/otXM566wOGrc2ur:df5vcZ3gnVZd3OOm9Fd/rL2qsdG5ufj
Score

10^/10

raccoon 92be0387873e54dd629b9bfa972c3a9a88e6726c stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

raccoon92be0387873e54dd629b9bfa972c3a9a88e6726cstealer

behavioral2

raccoon92be0387873e54dd629b9bfa972c3a9a88e6726cstealer

© 2018-2024

Terms | Privacy