Overview

overview

10

Static

static

3

e419c36229...18.exe

windows7-x64

10

e419c36229...18.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    153s
  • max time network
    160s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07-04-2024 04:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    e419c36229de306d62b723560300af49_JaffaCakes118.exe

  • Size

    483KB

  • MD5

    e419c36229de306d62b723560300af49

  • SHA1

    16458c63fa2cd9e0def64b2afbe4f1ae1a5f4a32

  • SHA256

    4cebb5a9492f91192a5def3c8345b217718a8223a9b845c3eec1e1eeaa8c6060

  • SHA512

    783f1a1511fd49f964ea31e7f0bc39b2c91c30e7d74b18270417a74252f1940437ae648a2c7ad76f84d2dc926fe6165e6bb8384ea76b303a5422451e8a1d123b

  • SSDEEP

    12288:0sG+e6p2WPhugGtXjTRXchvZnsv4l1W5S:0Oe6FJ0tXhIvZN18

Score
10/10
raccoonstealer

Malware Config

Signatures

  • Raccoon

    Raccoon is an infostealer written in C++ and first seen in 2019.

    stealerraccoon
  • Raccoon Stealer V1 payload 5 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\e419c36229de306d62b723560300af49_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\e419c36229de306d62b723560300af49_JaffaCakes118.exe"
    1⤵
      PID:2064

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2064-1-0x0000000000660000-0x0000000000760000-memory.dmp

      Filesize

      1024KB

      Download

    • memory/2064-2-0x0000000002240000-0x00000000022CE000-memory.dmp

      Filesize

      568KB

      Download

    • memory/2064-3-0x0000000000400000-0x00000000004EA000-memory.dmp

      Filesize

      936KB

      Download

    • memory/2064-4-0x0000000000400000-0x00000000004EA000-memory.dmp

      Filesize

      936KB

      Download

    • memory/2064-6-0x0000000000660000-0x0000000000760000-memory.dmp

      Filesize

      1024KB

      Download

    • memory/2064-7-0x0000000002240000-0x00000000022CE000-memory.dmp

      Filesize

      568KB

      Download

    • memory/2064-13-0x0000000000400000-0x00000000004EA000-memory.dmp

      Filesize

      936KB

      Download