Analysis

  • max time kernel
    148s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-enlocale:en-usos:windows10-2004-x64system
  • submitted
    01/02/2024, 02:33

General

  • Target

    85b28ef10bf5f86cf3f0f683cceab612.exe

  • Size

    520KB

  • MD5

    85b28ef10bf5f86cf3f0f683cceab612

  • SHA1

    ef5b91121511ac6b0ec7e6abc3372f07cae53817

  • SHA256

    76ed171c081e42c667427bc700d818ba7d6e3f29ef79b4bac08fd7609e9f4d4f

  • SHA512

    5c463683fda42d932e560e2865d17f06cc4c5c79c0a61f72afaf42ad33afb1b768879f00a0f7e3dcb3de026d5c5859123774b4798a6028bd9d0dfc964e3498c2

  • SSDEEP

    12288:Nkc5RDlzI0xOw+/HPgaWUteSB6uKtYD+KuZ:LRDla/4usJuKtQDu

Score
10/10

Malware Config

Signatures

  • Raccoon

    Raccoon is an infostealer written in C++ and first seen in 2019.

  • Raccoon Stealer V1 payload 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\85b28ef10bf5f86cf3f0f683cceab612.exe
    "C:\Users\Admin\AppData\Local\Temp\85b28ef10bf5f86cf3f0f683cceab612.exe"
    1⤵
      PID:4132

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/4132-1-0x0000000002430000-0x0000000002530000-memory.dmp

      Filesize

      1024KB

    • memory/4132-2-0x0000000004150000-0x00000000041DF000-memory.dmp

      Filesize

      572KB

    • memory/4132-3-0x0000000000400000-0x00000000023EB000-memory.dmp

      Filesize

      31.9MB

    • memory/4132-5-0x0000000002430000-0x0000000002530000-memory.dmp

      Filesize

      1024KB

    • memory/4132-7-0x0000000004150000-0x00000000041DF000-memory.dmp

      Filesize

      572KB