raccoon | d9d4e5718a63c9ef3c1234369e4306914f0cee944033559fb645fea5528367fc

Analysis

max time kernel
148s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
29/02/2024, 22:26

Target

af9f07e4d9b54bfd74ae113e7839b34d.exe
Size

590KB
MD5

af9f07e4d9b54bfd74ae113e7839b34d
SHA1

3131fe57670535a26d28e2328648694e1ab2fa15
SHA256

d9d4e5718a63c9ef3c1234369e4306914f0cee944033559fb645fea5528367fc
SHA512

4b62ea3a5086555c1aa5283c0c3b3e244ceba9b3028a200d2ab7e4c8736c889841cb78dea33a32a90bb458f4204d85efa79116528658840058262817d8e0bbc3
SSDEEP

12288:TXrXai/ddu6xP2UzVjornshg6K+/wGahqxSXd77p1BIuL/:PX7RQUZkc3wGahQStHp1BP

Score

10^/10

raccoon stealer

Raccoon
Raccoon is an infostealer written in C++ and first seen in 2019.
stealer raccoon

Raccoon Stealer V1 payload 4 IoCs

resource	yara_rule
behavioral2/memory/1812-2-0x0000000004FE0000-0x0000000005071000-memory.dmp	family_raccoon_v1
behavioral2/memory/1812-3-0x0000000000400000-0x000000000328F000-memory.dmp	family_raccoon_v1
behavioral2/memory/1812-4-0x0000000000400000-0x000000000328F000-memory.dmp	family_raccoon_v1
behavioral2/memory/1812-7-0x0000000004FE0000-0x0000000005071000-memory.dmp	family_raccoon_v1

C:\Users\Admin\AppData\Local\Temp\af9f07e4d9b54bfd74ae113e7839b34d.exe
"C:\Users\Admin\AppData\Local\Temp\af9f07e4d9b54bfd74ae113e7839b34d.exe"
1⤵
PID:1812

memory/1812-1-0x00000000032B0000-0x00000000033B0000-memory.dmp

Filesize
1024KB

Download
memory/1812-2-0x0000000004FE0000-0x0000000005071000-memory.dmp

Filesize
580KB

Download
memory/1812-3-0x0000000000400000-0x000000000328F000-memory.dmp

Filesize
46.6MB

Download
memory/1812-4-0x0000000000400000-0x000000000328F000-memory.dmp

Filesize
46.6MB

Download
memory/1812-6-0x00000000032B0000-0x00000000033B0000-memory.dmp

Filesize
1024KB

Download
memory/1812-7-0x0000000004FE0000-0x0000000005071000-memory.dmp

Filesize
580KB

Download