raccoon | 1c474449c67becb01f8689bd34ba10ee57b0ff2688592ea87be2368474af819e | Triage

Sharing

General

Target

dc819e6f51c7f362067711fb89fc1eaa
Size

583KB
Sample

240321-yv94eaha76
MD5

dc819e6f51c7f362067711fb89fc1eaa
SHA1

bc7c47eba8bc19772c9218607cdd4faf760f56cc
SHA256

1c474449c67becb01f8689bd34ba10ee57b0ff2688592ea87be2368474af819e
SHA512

617031694a3e61accb676592ac85077e6a137e19955bd9419de14fcfc4e0ef69786ea62aa7b72db2ab7b7d04187436b7263d864ce2d9b0f22859012658db4c33
SSDEEP

12288:7RaXb/FXVHMBhx/D8WlhVe2f1yt0uWWgaRjUut26sFh3GacOB8/e:7IXbzHMBhxbhrVeOlflon/e

Score

10^/10

raccoon aae14d50147481e9d32954bcc9a2bea8730e3959

Malware Config

Extracted

Family

raccoon

Version

1.7.3

Botnet

aae14d50147481e9d32954bcc9a2bea8730e3959

Attributes

url4cnc
https://telete.in/ponnilowercase

rc4.plain

rc4.plain

Targets

- Target
  
  dc819e6f51c7f362067711fb89fc1eaa
- Size
  
  583KB
- MD5
  
  dc819e6f51c7f362067711fb89fc1eaa
- SHA1
  
  bc7c47eba8bc19772c9218607cdd4faf760f56cc
- SHA256
  
  1c474449c67becb01f8689bd34ba10ee57b0ff2688592ea87be2368474af819e
- SHA512
  
  617031694a3e61accb676592ac85077e6a137e19955bd9419de14fcfc4e0ef69786ea62aa7b72db2ab7b7d04187436b7263d864ce2d9b0f22859012658db4c33
- SSDEEP
  
  12288:7RaXb/FXVHMBhx/D8WlhVe2f1yt0uWWgaRjUut26sFh3GacOB8/e:7IXbzHMBhxbhrVeOlflon/e
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

aae14d50147481e9d32954bcc9a2bea8730e3959raccoon

behavioral1

behavioral2