raccoon | b0ccf88d4b5ae968794c601fd99c0af9c61d617693cdb9de743ca03a199c1ea2

Analysis

max time kernel
148s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20240412-en
resource tags

arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
submitted
19-04-2024 05:24

Target

f99890be3b76ab2279ea6ff85366c9c3_JaffaCakes118.exe
Size

533KB
MD5

f99890be3b76ab2279ea6ff85366c9c3
SHA1

7d764d52d113cccfaf1524fb1c73a2abe7aa520a
SHA256

b0ccf88d4b5ae968794c601fd99c0af9c61d617693cdb9de743ca03a199c1ea2
SHA512

e73e9056099aa4fe0db7ff02d19622a0d25ee213e610175c2120a1aea6fc762508a116b113708af9e323c1509881e707f31f9228986231f02fc813bb37d7d082
SSDEEP

12288:L00zFIoOWf7B52PfvkKogxfNYsH2SUDsPi2mb9ZpT6NmS6:L+oOWf7yYcPifZR9S6

Score

10^/10

raccoon stealer

Raccoon
Raccoon is an infostealer written in C++ and first seen in 2019.
stealer raccoon

Raccoon Stealer V1 payload 4 IoCs

resource	yara_rule
behavioral2/memory/1916-2-0x0000000002650000-0x00000000026DF000-memory.dmp	family_raccoon_v1
behavioral2/memory/1916-3-0x0000000000400000-0x00000000023F0000-memory.dmp	family_raccoon_v1
behavioral2/memory/1916-4-0x0000000000400000-0x00000000023F0000-memory.dmp	family_raccoon_v1
behavioral2/memory/1916-7-0x0000000002650000-0x00000000026DF000-memory.dmp	family_raccoon_v1

C:\Users\Admin\AppData\Local\Temp\f99890be3b76ab2279ea6ff85366c9c3_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\f99890be3b76ab2279ea6ff85366c9c3_JaffaCakes118.exe"
1⤵
PID:1916

memory/1916-1-0x0000000002480000-0x0000000002580000-memory.dmp

Filesize
1024KB

Download
memory/1916-2-0x0000000002650000-0x00000000026DF000-memory.dmp

Filesize
572KB

Download
memory/1916-3-0x0000000000400000-0x00000000023F0000-memory.dmp

Filesize
31.9MB

Download
memory/1916-4-0x0000000000400000-0x00000000023F0000-memory.dmp

Filesize
31.9MB

Download
memory/1916-6-0x0000000002480000-0x0000000002580000-memory.dmp

Filesize
1024KB

Download
memory/1916-7-0x0000000002650000-0x00000000026DF000-memory.dmp

Filesize
572KB

Download