Analysis
-
max time kernel
147s -
max time network
155s -
platform
windows10-2004_x64 -
resource
win10v2004-20240226-en -
resource tags
-
submitted
05-04-2024 18:22
General
-
Target
db53ed475e738f0e7326c6cd4ed50bb5_JaffaCakes118.exe
-
Size
454KB
-
MD5
db53ed475e738f0e7326c6cd4ed50bb5
-
SHA1
f0c718f59266d967b55c3e23005ab5a4bccf7fb3
-
SHA256
fc6b841e6c753eeebf0d7cc8820cd3c6fcbeb40fc4d2c4d9a8bf9d3f0907fb76
-
SHA512
90077cd219ab3c9f55d49461dd89966a6a1e1e36b902fe95f29560818101980253c726ebab573b2e4cc341eadbfe731a131df28c6fee62d4531668a24e11a1f3
-
SSDEEP
12288:eg7LKJMsjx5gThTPPukDEGheT9mdH8cMB:BKJB5mbum+YH8D
Score
10/10
Malware Config
Extracted
Family
raccoon
Version
1.8.2
Botnet
8d179b9e611eee525425544ee8c6d77360ab7cd9
Attributes
-
url4cnc
http://teletop.top/agrybirdsgamerept
http://teleta.top/agrybirdsgamerept
https://t.me/agrybirdsgamerept
rc4.plain
rc4.plain
Signatures
-
Raccoon
Raccoon is an infostealer written in C++ and first seen in 2019.
-
Raccoon Stealer V1 payload 4 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\db53ed475e738f0e7326c6cd4ed50bb5_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\db53ed475e738f0e7326c6cd4ed50bb5_JaffaCakes118.exe"1⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
1024KB
-
Filesize
568KB
-
Filesize
580KB
-
Filesize
580KB
-
Filesize
1024KB
-
Filesize
568KB