Overview

overview

10

Static

static

3

f955a4e61c...18.exe

windows7-x64

10

f955a4e61c...18.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    149s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240412-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
  • submitted
    19-04-2024 02:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f955a4e61c68b3468602f18ab469c46e_JaffaCakes118.exe

  • Size

    526KB

  • MD5

    f955a4e61c68b3468602f18ab469c46e

  • SHA1

    9a14d82d40df41a76b2bbc7e6666a6356f847ca4

  • SHA256

    f5ce1abb61275e3402f49f48e8094bd2aa038f03845c41e2b7f570c66666794a

  • SHA512

    8a7e69b6551b04e0222a5ad0b8cc4be0a605d9c77a21a76a8d021e17c2bc7bffc34f52407add4dfaaaa042f2d9a45afa5aa62a575a8722cebb7a37fa94cb4b0b

  • SSDEEP

    6144:zMlg7xejJLjVFT87j9ycfUgso52VnSAUiix0PelGOnDZaaiKOH8UOxtmBBPAnpQa:j7gjJLcs5okVn8iiePnG0VetmBBPAi

Score
10/10
raccoonstealer

Malware Config

Signatures

  • Raccoon

    Raccoon is an infostealer written in C++ and first seen in 2019.

    stealerraccoon
  • Raccoon Stealer V1 payload 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\f955a4e61c68b3468602f18ab469c46e_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\f955a4e61c68b3468602f18ab469c46e_JaffaCakes118.exe"
    1⤵
      PID:3332

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/3332-1-0x0000000000980000-0x0000000000A80000-memory.dmp

      Filesize

      1024KB

      Download

    • memory/3332-2-0x00000000024F0000-0x0000000002583000-memory.dmp

      Filesize

      588KB

      Download

    • memory/3332-3-0x0000000000400000-0x00000000008ED000-memory.dmp

      Filesize

      4.9MB

      Download

    • memory/3332-4-0x0000000000400000-0x00000000008ED000-memory.dmp

      Filesize

      4.9MB

      Download

    • memory/3332-6-0x0000000000980000-0x0000000000A80000-memory.dmp

      Filesize

      1024KB

      Download

    • memory/3332-7-0x00000000024F0000-0x0000000002583000-memory.dmp

      Filesize

      588KB

      Download