raccoon | b1aaf0df559aa2120ea5f5ae0a321751ffbd58fabf543479744c416be00af919

Analysis

max time kernel
147s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
09-04-2024 14:03

Target

ea2782872cef67ccbbc863f316f74fc8_JaffaCakes118.exe
Size

483KB
MD5

ea2782872cef67ccbbc863f316f74fc8
SHA1

80c2fba5d9125e31974f5eaffea28ecd2f7f6354
SHA256

b1aaf0df559aa2120ea5f5ae0a321751ffbd58fabf543479744c416be00af919
SHA512

4811bf7ea9d9134e2b2ef2b2d049050b74c52b6d72683690df88b0d328b9baf7ce0ffef956007e5264ace66af63c8ea11e32ae1bc7d36ec0356412995df70b92
SSDEEP

12288:J+iVt8KhKhWWnK1jbEJfo20iaLeQdAAJjwdHkCwoO:nugKxn7lo20ia6QvJjS

Score

10^/10

raccoon stealer

Raccoon
Raccoon is an infostealer written in C++ and first seen in 2019.
stealer raccoon

Raccoon Stealer V1 payload 4 IoCs

resource	yara_rule
behavioral2/memory/556-2-0x0000000004930000-0x00000000049C3000-memory.dmp	family_raccoon_v1
behavioral2/memory/556-3-0x0000000000400000-0x0000000002CB0000-memory.dmp	family_raccoon_v1
behavioral2/memory/556-4-0x0000000000400000-0x0000000002CB0000-memory.dmp	family_raccoon_v1
behavioral2/memory/556-7-0x0000000004930000-0x00000000049C3000-memory.dmp	family_raccoon_v1

C:\Users\Admin\AppData\Local\Temp\ea2782872cef67ccbbc863f316f74fc8_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\ea2782872cef67ccbbc863f316f74fc8_JaffaCakes118.exe"
1⤵
PID:556

memory/556-1-0x0000000002F90000-0x0000000003090000-memory.dmp

Filesize
1024KB

Download
memory/556-2-0x0000000004930000-0x00000000049C3000-memory.dmp

Filesize
588KB

Download
memory/556-3-0x0000000000400000-0x0000000002CB0000-memory.dmp

Filesize
40.7MB

Download
memory/556-4-0x0000000000400000-0x0000000002CB0000-memory.dmp

Filesize
40.7MB

Download
memory/556-5-0x0000000002F90000-0x0000000003090000-memory.dmp

Filesize
1024KB

Download
memory/556-7-0x0000000004930000-0x00000000049C3000-memory.dmp

Filesize
588KB

Download