raccoon | 3157362ffceda367a0d158aeece4db7a85d882f1cc59dec1fbb21b12cb65149d | Triage

Submit
Reports

Overview

overview

Static

static

3

e34fd46876...18.exe

windows7-x64

e34fd46876...18.exe

windows10-2004-x64

Sharing

General

Target

e34fd468760872fc4d7d9c5f140735d3_JaffaCakes118
Size

585KB
Sample

240406-z7lr1sbc4v
MD5

e34fd468760872fc4d7d9c5f140735d3
SHA1

243cb36da36fb9c2822c6392654fc1f1001a587f
SHA256

3157362ffceda367a0d158aeece4db7a85d882f1cc59dec1fbb21b12cb65149d
SHA512

25340ac9db56883daa4c3d08c4d63d740e22de3b112ab6b45b46ec8d125b840926c00a1317893b3b1791a6915f71f03dd39d4e43d203e32f984d52426f076133
SSDEEP

12288:hoaGmONkGDB/hsMMokvmw/G6100Dtlle7IysTtBm:hopkGDB/hsMce6uu5O6tQ

Score

10^/10

raccoon b5998c5938c0648ce1e41086dc9f3e22ac1750bd stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e34fd468760872fc4d7d9c5f140735d3_JaffaCakes118.exe

Resource

win7-20240221-en

raccoon b5998c5938c0648ce1e41086dc9f3e22ac1750bd stealer

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

e34fd468760872fc4d7d9c5f140735d3_JaffaCakes118.exe

Resource

win10v2004-20231215-en

raccoon b5998c5938c0648ce1e41086dc9f3e22ac1750bd stealer

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Version

1.7.3

Botnet

b5998c5938c0648ce1e41086dc9f3e22ac1750bd

Attributes

url4cnc
https://telete.in/forkmaster123

rc4.plain

rc4.plain

Targets

- Target
  
  e34fd468760872fc4d7d9c5f140735d3_JaffaCakes118
- Size
  
  585KB
- MD5
  
  e34fd468760872fc4d7d9c5f140735d3
- SHA1
  
  243cb36da36fb9c2822c6392654fc1f1001a587f
- SHA256
  
  3157362ffceda367a0d158aeece4db7a85d882f1cc59dec1fbb21b12cb65149d
- SHA512
  
  25340ac9db56883daa4c3d08c4d63d740e22de3b112ab6b45b46ec8d125b840926c00a1317893b3b1791a6915f71f03dd39d4e43d203e32f984d52426f076133
- SSDEEP
  
  12288:hoaGmONkGDB/hsMMokvmw/G6100Dtlle7IysTtBm:hopkGDB/hsMce6uu5O6tQ
Score

10^/10

raccoon b5998c5938c0648ce1e41086dc9f3e22ac1750bd stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

raccoonb5998c5938c0648ce1e41086dc9f3e22ac1750bdstealer

behavioral2

raccoonb5998c5938c0648ce1e41086dc9f3e22ac1750bdstealer

© 2018-2024

Terms | Privacy