Overview

overview

10

Static

static

10

2456-11-0x...ry.exe

windows7-x64

1

2456-11-0x...ry.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2456-11-0x0000000000400000-0x0000000000416000-memory.dmp

  • Size

    88KB

  • MD5

    a10e6a70510d1ab8337b72518402ff84

  • SHA1

    0d4cf723c8118098965dbbcb9cc6060222405c15

  • SHA256

    708adcdc95e87d79d8cf775cb6e6f0f5e9c26b66fc8b3586218e7c3baac1070c

  • SHA512

    2f308a80420d205535d92c17e4624b2da47c17f2d5bd75b65b0c140ffaf1cf0f05a8245304a4ea71f333b2ce1324da7b7752ee982ea4fe60ece8077653830397

  • SSDEEP

    1536:KX0PI6ORWFPekAZZ0XCkSBIPV1Fn1p06QcKUp3S0FqH:9PI6GWpeVsXCLMrxbQOpXFqH

Score
10/10
51aff6e9402ba30682487f3dfa017fcfraccoon

Malware Config

Extracted

Family

raccoon

Botnet

51aff6e9402ba30682487f3dfa017fcf

C2

http://195.20.16.155:80

Attributes
  • user_agent

    MrBidenNeverKnow

xor.plain

Signatures

  • Raccoon Stealer V2 payload 1 IoCs
  • Raccoon family
    raccoon
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2456-11-0x0000000000400000-0x0000000000416000-memory.dmp
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections