raccoon | abebbe947b499474ec2aad9c060e616a8b8df4040533da9b6eb2c622a98e10e7 | Triage

Submit
Reports

Overview

overview

Static

static

3

f845039815...18.exe

windows7-x64

f845039815...18.exe

windows10-2004-x64

Sharing

General

Target

f8450398150063390d52b5c02290466c_JaffaCakes118
Size

582KB
Sample

240418-skxgnsgd87
MD5

f8450398150063390d52b5c02290466c
SHA1

0a09818554bb02f8a59b8af1a20c5d43e1e1b204
SHA256

abebbe947b499474ec2aad9c060e616a8b8df4040533da9b6eb2c622a98e10e7
SHA512

ff1e8af00c7c6f7511d15326a48cfbc9ccf67cac43a607f9279632606cf00aca713a5c360ccd59c6ee58c881d3ee0f561dbe8e4505c5b1eb850a2bd47962a0cb
SSDEEP

12288:4ZN5gOKXX2SILMRDHofL45T2KbbbyG3dLvvN82cfft9NQ4S4rcap+:4dKXX2Iqfs56AFzOpt9m

Score

10^/10

raccoon cd8dc1031358b1aec55cc6bc447df1018b068607 stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f8450398150063390d52b5c02290466c_JaffaCakes118.exe

Resource

win7-20240221-en

raccoon cd8dc1031358b1aec55cc6bc447df1018b068607 stealer

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

f8450398150063390d52b5c02290466c_JaffaCakes118.exe

Resource

win10v2004-20240412-en

raccoon cd8dc1031358b1aec55cc6bc447df1018b068607 stealer

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Version

1.7.3

Botnet

cd8dc1031358b1aec55cc6bc447df1018b068607

Attributes

url4cnc
https://telete.in/jagressor_kz

rc4.plain

rc4.plain

Targets

- Target
  
  f8450398150063390d52b5c02290466c_JaffaCakes118
- Size
  
  582KB
- MD5
  
  f8450398150063390d52b5c02290466c
- SHA1
  
  0a09818554bb02f8a59b8af1a20c5d43e1e1b204
- SHA256
  
  abebbe947b499474ec2aad9c060e616a8b8df4040533da9b6eb2c622a98e10e7
- SHA512
  
  ff1e8af00c7c6f7511d15326a48cfbc9ccf67cac43a607f9279632606cf00aca713a5c360ccd59c6ee58c881d3ee0f561dbe8e4505c5b1eb850a2bd47962a0cb
- SSDEEP
  
  12288:4ZN5gOKXX2SILMRDHofL45T2KbbbyG3dLvvN82cfft9NQ4S4rcap+:4dKXX2Iqfs56AFzOpt9m
Score

10^/10

raccoon cd8dc1031358b1aec55cc6bc447df1018b068607 stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

raccooncd8dc1031358b1aec55cc6bc447df1018b068607stealer

behavioral2

raccooncd8dc1031358b1aec55cc6bc447df1018b068607stealer

© 2018-2024

Terms | Privacy