Analysis
-
max time kernel
165s -
max time network
174s -
platform
windows10-2004_x64 -
resource
win10v2004-20240412-en -
resource tags
-
submitted
18-04-2024 07:59
General
-
Target
f794482e6fcdac22d8a86e4cfe1c5fd1_JaffaCakes118.exe
-
Size
503KB
-
MD5
f794482e6fcdac22d8a86e4cfe1c5fd1
-
SHA1
709a945870e7dc02eb35d27907f277cb8ff46b55
-
SHA256
67e20fb330a04ed5016a2386014c472ddcdd7fff3d6d739ebe175e7f88861549
-
SHA512
bae999b582683457e192f9f1bd607a4e8ebe61c0c97d8c3b2454506c6566047f7cea80d5b82e19b4a8f7ebe2fe3ee6fc536ae75aeb4e3c9e30b27f313a028046
-
SSDEEP
12288:I1dGAWfGXtAwbu8bfv0SiQ/DF/BYdRvipT0/I:I+kXvuyf8475BOKV0/I
Score
10/10
Malware Config
Signatures
-
Raccoon
Raccoon is an infostealer written in C++ and first seen in 2019.
-
Raccoon Stealer V1 payload 4 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\f794482e6fcdac22d8a86e4cfe1c5fd1_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\f794482e6fcdac22d8a86e4cfe1c5fd1_JaffaCakes118.exe"1⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1660-1-0x0000000002FC0000-0x00000000030C0000-memory.dmpFilesize
1024KB
-
memory/1660-2-0x0000000004A60000-0x0000000004AF3000-memory.dmpFilesize
588KB
-
memory/1660-3-0x0000000000400000-0x0000000002CB4000-memory.dmpFilesize
40.7MB
-
memory/1660-4-0x0000000000400000-0x0000000002CB4000-memory.dmpFilesize
40.7MB
-
memory/1660-6-0x0000000002FC0000-0x00000000030C0000-memory.dmpFilesize
1024KB
-
memory/1660-7-0x0000000004A60000-0x0000000004AF3000-memory.dmpFilesize
588KB