Overview

overview

10

Static

static

3

0df31dca79...18.exe

windows7-x64

10

0df31dca79...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0df31dca797708074b386cfab602c5df_JaffaCakes118

  • Size

    555KB

  • Sample

    240328-x22vyafa83

  • MD5

    0df31dca797708074b386cfab602c5df

  • SHA1

    2088f87c8b393c8cc73e93a266f2ac8c7a99d148

  • SHA256

    3da436e589c4718a8fa510aca875b6897cbbfde6d80302a32654380f9a145a84

  • SHA512

    c44905c54910ad092cfa570fa77c463d7723b8a2f852b0891fac4653c12750b7cd92d149cf8fd6bf09864c5025a92cb8aa5eef78b1ccececaa23bb2f8a12600c

  • SSDEEP

    12288:VpbE2F4yZWtGwn0bcAF7BbG7NSkhrdKOL6luzxd6L3:Vpb54y0tGw0bcA/Nkh5KOCCL6L3

Score
10/10
raccoon5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4stealer

Malware Config

Extracted

Family

raccoon

Version

1.8.1

Botnet

5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4

Attributes
  • url4cnc

    https://t.me/agrybirdsgamerept

rc4.plain
rc4.plain

Targets

    • Target

      0df31dca797708074b386cfab602c5df_JaffaCakes118

    • Size

      555KB

    • MD5

      0df31dca797708074b386cfab602c5df

    • SHA1

      2088f87c8b393c8cc73e93a266f2ac8c7a99d148

    • SHA256

      3da436e589c4718a8fa510aca875b6897cbbfde6d80302a32654380f9a145a84

    • SHA512

      c44905c54910ad092cfa570fa77c463d7723b8a2f852b0891fac4653c12750b7cd92d149cf8fd6bf09864c5025a92cb8aa5eef78b1ccececaa23bb2f8a12600c

    • SSDEEP

      12288:VpbE2F4yZWtGwn0bcAF7BbG7NSkhrdKOL6luzxd6L3:Vpb54y0tGw0bcA/Nkh5KOCCL6L3

    Score
    10/10
    raccoon5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4stealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Raccoon Stealer V1 payload

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks