Analysis
-
max time kernel
150s -
max time network
151s -
platform
windows10-2004_x64 -
resource
win10v2004-20240412-en -
resource tags
-
submitted
15-04-2024 18:09
General
-
Target
f1ab7ae4a4fd9604af3c4b04814f247d_JaffaCakes118.exe
-
Size
493KB
-
MD5
f1ab7ae4a4fd9604af3c4b04814f247d
-
SHA1
134ba18bb0c273271326f1d96e7d2605ede8c2e2
-
SHA256
cada28cf855a9059f761e89e4441797a92aed1e4a5878c2e87171090295dcaea
-
SHA512
3aabbeb37c7ffe9cdead076c8d849432160fa2286e220807c694132570ee6a69462c4c267bcc7b3bfae0b450eb166126304c32a8af87103b2f2e5b94c4050d42
-
SSDEEP
12288:OkzvxSgH0nSI5KDW7e7Zwcce9yvG1+YdBPA:nYgHJI0WdceO1+iBPA
Score
10/10
Malware Config
Signatures
-
Raccoon
Raccoon is an infostealer written in C++ and first seen in 2019.
-
Raccoon Stealer V1 payload 4 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\f1ab7ae4a4fd9604af3c4b04814f247d_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\f1ab7ae4a4fd9604af3c4b04814f247d_JaffaCakes118.exe"1⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/4188-1-0x0000000000A80000-0x0000000000B80000-memory.dmpFilesize
1024KB
-
memory/4188-2-0x0000000002670000-0x0000000002703000-memory.dmpFilesize
588KB
-
memory/4188-3-0x0000000000400000-0x00000000008E5000-memory.dmpFilesize
4.9MB
-
memory/4188-4-0x0000000000400000-0x00000000008E5000-memory.dmpFilesize
4.9MB
-
memory/4188-6-0x0000000000A80000-0x0000000000B80000-memory.dmpFilesize
1024KB
-
memory/4188-7-0x0000000002670000-0x0000000002703000-memory.dmpFilesize
588KB