raccoon | 4cebb5a9492f91192a5def3c8345b217718a8223a9b845c3eec1e1eeaa8c6060

Analysis

max time kernel
144s
max time network
122s
platform
windows7_x64
resource
win7-20240221-en
resource tags

arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
submitted
07-04-2024 04:52

Target

e419c36229de306d62b723560300af49_JaffaCakes118.exe
Size

483KB
MD5

e419c36229de306d62b723560300af49
SHA1

16458c63fa2cd9e0def64b2afbe4f1ae1a5f4a32
SHA256

4cebb5a9492f91192a5def3c8345b217718a8223a9b845c3eec1e1eeaa8c6060
SHA512

783f1a1511fd49f964ea31e7f0bc39b2c91c30e7d74b18270417a74252f1940437ae648a2c7ad76f84d2dc926fe6165e6bb8384ea76b303a5422451e8a1d123b
SSDEEP

12288:0sG+e6p2WPhugGtXjTRXchvZnsv4l1W5S:0Oe6FJ0tXhIvZN18

Score

10^/10

raccoon stealer

Raccoon
Raccoon is an infostealer written in C++ and first seen in 2019.
stealer raccoon

Raccoon Stealer V1 payload 4 IoCs

resource	yara_rule
behavioral1/memory/2000-2-0x0000000000260000-0x00000000002EE000-memory.dmp	family_raccoon_v1
behavioral1/memory/2000-3-0x0000000000400000-0x00000000004EA000-memory.dmp	family_raccoon_v1
behavioral1/memory/2000-7-0x0000000000260000-0x00000000002EE000-memory.dmp	family_raccoon_v1
behavioral1/memory/2000-17-0x0000000000400000-0x00000000004EA000-memory.dmp	family_raccoon_v1

C:\Users\Admin\AppData\Local\Temp\e419c36229de306d62b723560300af49_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\e419c36229de306d62b723560300af49_JaffaCakes118.exe"
1⤵
PID:2000

memory/2000-1-0x0000000000690000-0x0000000000790000-memory.dmp

Filesize
1024KB

Download
memory/2000-2-0x0000000000260000-0x00000000002EE000-memory.dmp

Filesize
568KB

Download
memory/2000-3-0x0000000000400000-0x00000000004EA000-memory.dmp

Filesize
936KB

Download
memory/2000-7-0x0000000000260000-0x00000000002EE000-memory.dmp

Filesize
568KB

Download
memory/2000-6-0x0000000000690000-0x0000000000790000-memory.dmp

Filesize
1024KB

Download
memory/2000-17-0x0000000000400000-0x00000000004EA000-memory.dmp

Filesize
936KB

Download