raccoon | b987b62195f982a1b4b8bccfc559b20f96581c945b1fa3c7a4685ff8c7112db5

Analysis

max time kernel
149s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20240412-en
resource tags

arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
submitted
19-04-2024 03:48

Target

f97054aaa5b42015f5fd24bd6d66fb5c_JaffaCakes118.exe
Size

495KB
MD5

f97054aaa5b42015f5fd24bd6d66fb5c
SHA1

9d5173179863c1d37138ecdc247e0c5ae9a1eb7e
SHA256

b987b62195f982a1b4b8bccfc559b20f96581c945b1fa3c7a4685ff8c7112db5
SHA512

e82bda3b010c01c97ce023df0b85ef26f08d5d9ad61dcbdd3ba3562469e69185578cd866e9edfa941c978728e5db06b6876d7fcc75ebb1511b5a4521aaad547a
SSDEEP

6144:8Vaqs32HMBdaUjwwaFOTF4A1Otgqpm5kIha+NQUYhXTtyMShcp2TNrPSBxJg:QOdxjjaFkftqcVha+Ihic0BP2Y

Score

10^/10

raccoon stealer

Raccoon
Raccoon is an infostealer written in C++ and first seen in 2019.
stealer raccoon

Raccoon Stealer V1 payload 3 IoCs

Processes:

resource	yara_rule
behavioral2/memory/6016-2-0x0000000004AB0000-0x0000000004B43000-memory.dmp	family_raccoon_v1
behavioral2/memory/6016-3-0x0000000000400000-0x0000000002CB2000-memory.dmp	family_raccoon_v1
behavioral2/memory/6016-6-0x0000000004AB0000-0x0000000004B43000-memory.dmp	family_raccoon_v1

C:\Users\Admin\AppData\Local\Temp\f97054aaa5b42015f5fd24bd6d66fb5c_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\f97054aaa5b42015f5fd24bd6d66fb5c_JaffaCakes118.exe"
1⤵
PID:6016

memory/6016-1-0x0000000002F10000-0x0000000003010000-memory.dmp

Filesize
1024KB

Download
memory/6016-2-0x0000000004AB0000-0x0000000004B43000-memory.dmp

Filesize
588KB

Download
memory/6016-3-0x0000000000400000-0x0000000002CB2000-memory.dmp

Filesize
40.7MB

Download
memory/6016-6-0x0000000004AB0000-0x0000000004B43000-memory.dmp

Filesize
588KB

Download
memory/6016-7-0x0000000002F10000-0x0000000003010000-memory.dmp

Filesize
1024KB

Download