Overview

overview

10

Static

static

3

906bf68f10...18.exe

windows7-x64

10

906bf68f10...18.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    140s
  • max time network
    136s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02-04-2024 15:37

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    906bf68f10d642ba7f5fb9685249db99_JaffaCakes118.exe

  • Size

    581KB

  • MD5

    906bf68f10d642ba7f5fb9685249db99

  • SHA1

    ddc876cf17c2cc3b38a02f75770522c5cf939ef6

  • SHA256

    cc98ee14bc8504ed2dae9d010c7f209775de51f9f31086814e2fb6b42baa7cb5

  • SHA512

    500a0c0f422e08fb68a292bc8c2a959be653ee1aef9607070d49bd11255da0e60679dc30517b48831c1ae46fb74aeedc325279bccc7bfaac5a88e752a961b223

  • SSDEEP

    12288:hQzY+9+bMw7eyUnFafcqTUiHrC9wahAwgUPHMrpTZg83CJWW4tDM:h69/essQiLwwaFgrZg83LM

Score
10/10
raccoonstealer

Malware Config

Signatures

  • Raccoon

    Raccoon is an infostealer written in C++ and first seen in 2019.

    stealerraccoon
  • Raccoon Stealer V1 payload 5 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\906bf68f10d642ba7f5fb9685249db99_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\906bf68f10d642ba7f5fb9685249db99_JaffaCakes118.exe"
    1⤵
      PID:1732

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1732-1-0x00000000009C0000-0x0000000000AC0000-memory.dmp

      Filesize

      1024KB

      Download

    • memory/1732-2-0x0000000002500000-0x000000000258E000-memory.dmp

      Filesize

      568KB

      Download

    • memory/1732-3-0x0000000000400000-0x00000000007C3000-memory.dmp

      Filesize

      3.8MB

      Download

    • memory/1732-4-0x0000000000400000-0x00000000007C3000-memory.dmp

      Filesize

      3.8MB

      Download

    • memory/1732-6-0x00000000009C0000-0x0000000000AC0000-memory.dmp

      Filesize

      1024KB

      Download

    • memory/1732-7-0x0000000002500000-0x000000000258E000-memory.dmp

      Filesize

      568KB

      Download

    • memory/1732-13-0x0000000000400000-0x00000000007C3000-memory.dmp

      Filesize

      3.8MB

      Download